[stunnel-users] feature ? authorizing only given certificates ?
Christopher Schultz
chris at christopherschultz.net
Thu Jul 11 16:43:56 CEST 2019
Fred,
(Apologies for the previous empty email.)
On 7/10/19 12:01, fmgre-dell at yahoo.fr wrote:
> Hello
>
> My european organization is using a certificate chain which signs tens
> of thousands of user certificates.
>
> My local organization counts 300 users ... and i only want these 300 to
> get in the IT system.
>
> I'd like to know if there is a way to restrict the connection to a
> subset of certificates ( for example based on a list of authorized
> emails which are written in the certificate )
Why not simply create a new CA certificate, sign those 300 you trust,
and then trust the new CA?
-chris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 899 bytes
Desc: OpenPGP digital signature
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20190711/ce0871b6/attachment.sig>
More information about the stunnel-users
mailing list