[stunnel-users] How to configure STunnel to use cert. from certificate store

• Previous message (by thread): [stunnel-users] How to configure STunnel to use cert. from certificate store
• Next message (by thread): [stunnel-users] stunnel log size
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I believe the configuration would be the same for client or server, and for sure the windows cert store is used for both scenarios. (I use it in other solutions, but no idea how to configure stunnel to use it ☹ )

-jon

From: Flo Rance <trourance at gmail.com>
Sent: Wednesday, December 12, 2018 11:07 AM
To: Chicoine, Jonathan <Jonathan.Chicoine at allscripts.com>
Cc: stunnel-users at stunnel.org
Subject: Re: [stunnel-users] How to configure STunnel to use cert. from certificate store

Windows certificates store is used to perform client authentication.

A quick search leads to the following results:

https://www.stunnel.org/pipermail/stunnel-users/2014-August/004684.html<https://secure-web.cisco.com/1wPNVT7nm9kuah2xWpBSBKILkCB1LQoiUuC9lYEN0-Zx3DXWbzU-CGe2xgayZisvqPZCdYSZL2SPIhs3mrvHGisZJSDQerBd-y8pWQ7xvt-mY5zP2HqhAPU9-ML2INGiIkXlNOEE2MZWIBO_vOnkxHxRoJgnxbMQWF2DfF02WXDzf4brxIPxQOd83hPvPboKNbwL-MhhK-dq-VNNfPBojPXFG1cZF5GVur70cJl97dmSYJir_DRAH9A2ffDhstVWPcWtcowHcJXtAxsxweWDZyWLEP09XScbgJermsUaNVzsqgGOKqeEwgFvRUGf_ln8FnPau9DVeb8K3qf1DhXUB5qw1MtHka-1nGXHUY4iyjU1Bm97ee6djNGOVMGJaVeeYksV-V0REux1dxNSovILr990cAx-VDCXE9d6XYL1lSj_MbkLrdQRnky8sk3I-uiN7/https%3A%2F%2Fwww.stunnel.org%2Fpipermail%2Fstunnel-users%2F2014-August%2F004684.html>

https://www.stunnel.org/pipermail/stunnel-users/2016-March/005415.html<https://secure-web.cisco.com/1bY9Lg06G6WjOJNt2Cs2WFEmaPyTIRsqnk8tzq63yfpAnnnMm4FZMtRyb9knNMyZPRRh1FzEWEYY8h1m3MKdWlC14_r-XeUz_fzyxNro60mmgydK8BfmmZ9mSNa4ktketXBM3DvVcPTCQ0kYZn1SVnON4umOcWvJlgS5IFMyOyljN_J8GutamFmfkTjvmxpHWFdBpXja3fFimzcs9n4L2cQYSLH1V5g-IyyAaMeeXvhJYzgiUJV-aYrtsTGOsbHCTutGHc4QEDdPlUrOxeCA9RGs0O1s8CSEeCLrQaeoX26t8VStX5Urnpgo1jL6lTkkFUywbZ_HcE5L1zTg_DF7t3N3q7qgdT_PCpudbwzPXeK2k58sJV3jTH9rjq6nYls_FK0YTrK9EuCGDGPk8Emb1bgCasRW_lv_BNqYbGDYwnG4xCJk_tNnyf50bCUS5MYCc/https%3A%2F%2Fwww.stunnel.org%2Fpipermail%2Fstunnel-users%2F2016-March%2F005415.html>

Please note, I don't use Windows at all.

Regards,
Flo

On Wed, Dec 12, 2018 at 3:52 PM Chicoine, Jonathan <Jonathan.Chicoine at allscripts.com<mailto:Jonathan.Chicoine at allscripts.com>> wrote:
How in the word you specify the certificate to use from the windows certificate store (for example, on Windows 10 or Windows Server 2012)?

The documentation obviously says to use the “cert” config option to specify a file (and the “key” config option for the private key) … but to use a cert from the windows certificate store, shouldn’t it be the certs “common name” field or thumbprint … or something.

Am new to this whole thing and have been googling for the answer for days.

Any help would be greatly appreciated.

-jonathan
_______________________________________________
stunnel-users mailing list
stunnel-users at stunnel.org<mailto:stunnel-users at stunnel.org>
https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users<https://secure-web.cisco.com/1p4enL6mQAuLTYQRkn6tkgqPIJqXIwDRQpUblcg5aKOViGrXR5cyFhv9s9qaRPPVnXjr-3Ic81L66cFuqX0g90LAq1WGrQrnLK_-wyvsGFeIqlqp039Rz-32DZ9B3XsJgrzWI_Jrz7FJgkGe92tJmRiHbvbuKmmCeETvFfrikKIPun9GoYb_OmAYC_5sxZ6pTJCSk07UikN_qegUvOjkyHTKwuMpXnGjOk4JXhtOsw1uv0Gk3iTMpAowWTnZw8b1sb7k4zrcLYneii5PnlNbBwNacAFDbtum98DzPDSV7LP8nYAZ-wymAHNVsBl9VXrA7h6oA9aZ02EYkzjI2iLekw0OWbOjpQPJKWNvA_CQJSr_dzTbLHx9j9wFW3gwcmGaRXPDO881_NuWjz-zeBrPdityA8Yrl7FCEUHwCyNEmtKLCKjuIWvKQGEangpyAsWOb/https%3A%2F%2Fwww.stunnel.org%2Fcgi-bin%2Fmailman%2Flistinfo%2Fstunnel-users>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20181212/a009cd66/attachment.html>

• Previous message (by thread): [stunnel-users] How to configure STunnel to use cert. from certificate store
• Next message (by thread): [stunnel-users] stunnel log size
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]