[stunnel-users] Using CAPI Engine for client authentication

MichaƂ Trojnara Michal.Trojnara at stunnel.org
Fri Feb 19 20:51:31 CET 2016


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 18.02.2016 10:47, Shay Cohen wrote:
> But in this case it does not get the certificate (for some reason).
> 
I forgot to ask the obvious question:
Which version of stunnel do you use?

At least for the private key, you may specify its name with
"key = <the common name of your client certificate>".
I haven't tested it for the "cert" option and the CAPI engine.

I also updated stunnel to include some additional details for client
certificates requested by the server:
https://www.stunnel.org/downloads/beta/stunnel-5.31b2-installer.exe
Please send us the log files it produces with "debug = info".

Best regards,
	Mike
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQIcBAEBCAAGBQJWx3JDAAoJEC78f/DUFuAUG40P/1uTdRdTUjogRj6CzxVgjOmt
K2NKa3x7xy5gu4ahoX6LK6oBaMIpjObunwjYL1Kp11OBUE2dqXAMYy6bfQ0HLNN6
tjqTgL1k1bs1ea5yzcsici7dqymCL7gMNn7vHaguX9GigOMQtrLrGHwllAC03Rz+
VVyMSY+x44sTn5H/09oaOs9bY1sJlwfoiivZEgrEI0H5xLHQpaI9li5QOZKU5XOa
Am50a50/mWk8r56YEOzA3pYA9MxoGtQSj+e6Njn/3h883sdMEMRw5i28DOucUcId
u26MSrmf6po4LHWKlw08G6Dge/09/RRhvaC31IKPguhuKRJfMI7+5upQ+MITNlwd
/YU0YI7TnfdZNSjZ+dxA1ZdoP2SnpVFVyBExqglgKymd2Ej+8IjW1M+IlUJgGFPX
vSzOanVs6/lsW3PTTz2KcNiCpINsp/Uz9jNHhrXq+laaQLfzuyyZv4JdZrGnBcE1
Emni7a56lu7rcXjUGvq/YfqZ3bZyCD4OQPXfPmuYDMNPjHisqdJlQOnUUeKvwI0E
mVc302UB8sF1/jalb4mTsgC3Wr94KTItuvg+7DQG+9aF991MDBxoIzlMStKyrnX/
U5+Cvv2OO5Zg/1YfywVV6z+cgee05zM+ACq3v8hlEEFkeFBZ3CPVKvJO+FvQ84l9
Kfi7i0cgZFzeCA+c7Tkr
=NpFK
-----END PGP SIGNATURE-----


More information about the stunnel-users mailing list