Computer Science Talk Computer Science Talk    FAQ   Search   Memberlist   Usergroups   Register   Profile   Log in to check your private messages   Log in

Science Forums

more than only one certificate per server

Computer Science Talk Forum Index -> Computer Security

View previous topic :: View next topic
Author	Message
toralf Guest	Posted: Sat Jun 21, 2008 11:44 am    Post subject: more than only one certificate per server Hello, We serve at work many customers within a client/server architecture and would like to have different certs for different customer - but we've only one server where all customers connect to. Therefor I'm wondering, whether it is possible for a server providing a SSL connection to its web service to accept more than only one certificate. -- MfG/Sincerely Toralf Förster pgp finger print: 7B1A 07F4 EC82 0F90 D4C2 8936 872A E508 7DB6 9DA3
Back to top
	Ads
Advertising Sponsor
Felix Tiede Guest	Posted: Sun Jun 22, 2008 1:07 am    Post subject: Re: more than only one certificate per server toralf wrote: Quote: Hello, We serve at work many customers within a client/server architecture and would like to have different certs for different customer - but we've only one server where all customers connect to. Therefor I'm wondering, whether it is possible for a server providing a SSL connection to its web service to accept more than only one certificate. A web service using SSL/TLS can accept more than one client certificate, f.ex. one for each customer. If your web service supports specifying certification authorities to sign client certificates (like apache does), you can create a CA to sign client certificates. This would enable you to issue new client certificates without reconfiguring your web service. And if you can specify certificate revocation lists as well, you can also revoke certificates without reconfiguration. But this depends on what the server behind your web service supports. What a web service can't do is present different server certificates to each customer, except each customer would use his own IP/Port combination. Hope it helps, Felix Tiede
Back to top
	Ads
Advertising Sponsor
Display posts from previous: All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 Year Oldest FirstNewest First

	Computer Science Talk Forum Index -> Computer Security	All times are GMT
Page 1 of 1

Jump to: Select a forum Computer Science Talk----------------Computer Science TalkComputer Security  You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum

Australian Debt Consolidation Experts medical insurance Wedding Ring Annunci di escort, accompagnatrici e massaggiatrici Swinging in Spain ASP personal secured loans Make Your Own Website Cheap Phone Calls Cleaning Service toxic mold UK Swingers Genuine Contacts Site floor machines Vacuum Cleaner Bags

102 Attacks blocked

Powered by phpBB © 2001, 2005 phpBB Group