Nginx client SSL authentication

nginx ssl-certificate

Your configuration is actually correct. However, please make sure that you DO NOT put actual client certificates into client_package.cer file. This file should only contain trusted CA certificates, actually it should contain the complete chain(s). You should request all root and intermediate certificates from your client if they haven't provided them.

There are also few gotchas related to the default server setup. Please read this and make sure it does not affect you.


Use ssl_trusted_certificate directive indstead of ssl_client_certificate. See docs http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_trusted_certificate .

But anyway, I would recomend signing all client certificates with ONE ROOT CA and verify, if the client certificate is signed with that CA.

If it solved your problem, please accept it as answer.

Related

How to --enable-dom without recompiling PHP?
What does it mean when Linux has no I/O scheduler
Bottles of beer in level 10
Wii extended range sensor bar
Is there a way to bind hotkey that moves camera to last alert point on map?
Why does my Xbox 360 reset when I change the input on my TV, unplug the HDMI cable, or turn the TV off?
How to be sure the GTA V "play disk" isn't installed?
List of Fifth Generation Pokemon [closed]
Which is better: side quests after killing the warrior or Playthrough 2?
Binding keys in Elite Dangerous
How do I get the achievement for Sector 3?
Aftershock (Radiant) quest - how does the Staff of Magnus fit in? Does it have a special function in this quest?