RE: SSL Client Auth with Virtual Hosts

Are there any parameters that I am missing, or am I doing something
incorrect?

On my setup, client authentication is either on or off globally. I can't
seem to isolate it at the virtual host level.

Thanks.=20

Nadeem

Example again:

NameVirtualHost 111.111.111.111:443

<Virtualhost 111.111.111.111:443>
ServerAdmin [email]adsfasfsa@asdfasfds.com[/email]
DocumentRoot /var/www
ServerName abc1-no-client-auth.com

SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
</VirtualHost>

<Virtualhost 111.111.111.111:443>
ServerAdmin [email]adsfasfsa@asdfasfds.com[/email]
DocumentRoot /var/www
ServerName abc1-ssl-client-auth.com

SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
SSLVerifyClient require
SSLVerifyDepth 2
SSLCACertificateFile /etc/httpd/conf/ssl.crt/server-calist.crt
SSLOptions +StdEnvVars +ExportCertData
</VirtualHost>



-----Original Message-----
From: [email]owner-modssl-users@modssl.org[/email]
[mailto:owner-modssl-users@modssl.org] On Behalf Of Daniel Kimblad
Sent: Thursday, June 02, 2005 8:50 AM
To: [email]modssl-users@modssl.org[/email]
Subject: Re: SSL Client Auth with Virtual Hosts

Yes, I've had an environment like that running.

/Daniel

----- Original Message -----
From: "Hoda Nadeem" <hoda_nadeem@bah.com>
To: <modssl-users@modssl.org>
Sent: Tuesday, May 31, 2005 6:05 PM
Subject: SSL Client Auth with Virtual Hosts




Does anybody know if it is possible to use virtual hosts with one
virtual host with ssl client authentication, but the other one without?

Example:=20

NameVirtualHost 111.111.111.111:443

<Virtualhost 111.111.111.111:443>
ServerAdmin [email]adsfasfsa@asdfasfds.com[/email]
DocumentRoot /var/www
ServerName abc1-no-client-auth.com

SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
</VirtualHost>


NameVirtualHost 111.111.111.111:443

<Virtualhost 111.111.111.111:443>
ServerAdmin [email]adsfasfsa@asdfasfds.com[/email]
DocumentRoot /var/www
ServerName abc1-ssl-client-auth.com

SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
SSLVerifyClient require
SSLVerifyDepth 2
SSLCACertificateFile /etc/httpd/conf/ssl.crt/server-calist.crt
SSLOptions +StdEnvVars +ExportCertData
SSLSessionCache none
</VirtualHost>
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) [url]www.modssl.org[/url]
User Support Mailing List [email]modssl-users@modssl.org[/email]
Automated List Manager [email]majordomo@modssl.org[/email]


______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) [url]www.modssl.org[/url]
User Support Mailing List [email]modssl-users@modssl.org[/email]
Automated List Manager [email]majordomo@modssl.org[/email]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) [url]www.modssl.org[/url]
User Support Mailing List [email]modssl-users@modssl.org[/email]
Automated List Manager [email]majordomo@modssl.org[/email]