[stunnel-users] feature ? authorizing only given certificates ?

Christopher Schultz chris at christopherschultz.net
Thu Jul 11 16:43:56 CEST 2019


(Apologies for the previous empty email.)

On 7/10/19 12:01, fmgre-dell at yahoo.fr wrote:
> Hello
> My european organization is using a certificate chain which signs tens
> of thousands of user certificates.
> My local organization counts 300 users ...  and i only want these 300 to
> get in the IT system.
> I'd like to know if there is a way to restrict the connection to a
> subset of certificates ( for example based on a list of authorized
> emails which are written in the certificate ) 

Why not simply create a new CA certificate, sign those 300 you trust,
and then trust the new CA?


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 899 bytes
Desc: OpenPGP digital signature
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20190711/ce0871b6/attachment.sig>

More information about the stunnel-users mailing list