[stunnel-users] feature ? authorizing only given certificates ?

• Previous message (by thread): [stunnel-users] feature ? authorizing only given certificates ?
• Next message (by thread): [stunnel-users] feature ? authorizing only given certificates ?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Fred,

(Apologies for the previous empty email.)

On 7/10/19 12:01, fmgre-dell at yahoo.fr wrote:
> Hello
> 
> My european organization is using a certificate chain which signs tens
> of thousands of user certificates.
> 
> My local organization counts 300 users ...  and i only want these 300 to
> get in the IT system.
> 
> I'd like to know if there is a way to restrict the connection to a
> subset of certificates ( for example based on a list of authorized
> emails which are written in the certificate ) 

Why not simply create a new CA certificate, sign those 300 you trust,
and then trust the new CA?

-chris

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 899 bytes
Desc: OpenPGP digital signature
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20190711/ce0871b6/attachment.sig>

• Previous message (by thread): [stunnel-users] feature ? authorizing only given certificates ?
• Next message (by thread): [stunnel-users] feature ? authorizing only given certificates ?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]