[stunnel-users] Individual user certs for each person who uses Windows PC

Michal Trojnara Michal.Trojnara at mirt.net
Tue Sep 7 14:59:51 CEST 2010


I wrote:
> You're right.  OpenVPN includes cryptoapi.c code to use Windows
> Certificate Store.

It looks like it's more complex than just using OpenVPN code.  Peter
Runestig has only implemented 1 of 4 functions required for stunnel.

You may try:
ftp://stunnel.mirt.net/stunnel/stunnel-4.34b7-tar.gz
ftp://stunnel.mirt.net/stunnel/stunnel-4.34b7-installer.exe
It implements new "cryptoapicert" service-level option that calls
SSL_CTX_use_CryptoAPI_certificate() from openvpn-2.1.3.

I also discovered that Peter Runestig (original author of the cryptoapi.c
code) is unfortunately dead for over 5 years, so he won't help us.  8-(

Mike



More information about the stunnel-users mailing list