I am having WAMP (Windows, Apache, MySQL and PHP) on a web server. The
box is available within our organization network only.
I need to implement SSO (Single Sign On) for a tool to be launched for
people of our organization only. The tool should be able to detect
which intranet user is visiting ou
On Sun, Sep 9, 2012 at 8:59 AM, Pete Houston wrote:
> On Sun, Sep 09, 2012 at 08:36:30AM -0500, Tom Browder wrote:
>> So the client cert. does contain the private key? Then its password
>> is all that is protecting it?
>
> No, the key is normally (but not always) kept separately.
So, if I gener
On Sun, Sep 09, 2012 at 08:36:30AM -0500, Tom Browder wrote:
> So the client cert. does contain the private key? Then its password
> is all that is protecting it?
No, the key is normally (but not always) kept separately.
> Mark, in your experience, what is the best way to distribute client
> ce
On Wed, Sep 5, 2012 at 4:32 PM, Mark Montague wrote:
...
> As you can see, the CN is not a hostname and does not get validated by
> httpd. You need to rely on the certificate authorities you trust in order to
> not sign certificates for "improper" CNs -- for example, the CN of a host
> that does n
I'm trying to clean up my conf files after getting an all-SSL server
with several virtual hosts working.
At the moment, for each server block, I have this:
SSLEngine on
SSLCACertificateFile/path/to/ca.pem
SSLCertificateFile /path/to/server.crt
SSLCertificateKeyFile /path/
