Initial sslauth doc

2017-05-13 22:10:55 +02:00 · 2017-05-13 22:10:55 +02:00 · c1c450c334
parent 01fd505591
commit c1c450c334
1 changed files with 26 additions and 1 deletions
--- a/HowtoSSLauth.md
+++ b/HowtoSSLauth.md
@ -16,4 +16,29 @@ Ce que l'on sait moins, c'est que SSL/TLS permet aussi l'authentification des cl

 $ openssl version
 OpenSSL 1.0.2h  3 May 2016
-~~~
+~~~
+
+## Coté serveur
+
+### Apache
+
+~~~
+SSLCACertificateFile /etc/ssl/certs/CA.pem
+SSLVerifyDepth 1
+SSLVerifyClient require
+~~~
+
+### Nginx
+
+~~~
+ssl_client_certificate /etc/ssl/certs/CA.pem;
+ssl_verify_client require;
+~~~
+
+## Coté client
+
+### Curl
+
+~~~
+curl --cert ./client.crt --key ./client.key -u "user:pass" "https://example.com"  
+~~~