Changes between Version 30 and Version 31 of TrackingDevelopmentTrunk


Ignore:
Timestamp:
05/24/09 18:54:38 (14 years ago)
Author:
desai
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • TrackingDevelopmentTrunk

    v30 v31  
    2626 
    2727With this change, SSL certificate based client authentication is supported. In order to use this, based CA-type capabilities are required. A central CA needs to be created, with each server and all clients getting a signed cert. See [wiki:Authentication] for details.  
     28 
     29Setting up keys is accomplished with three settings, each in the communication section of bcfg2.conf: 
     301. key = /path/to/ssl private key 
     312. certificate = /path/to/signed cert for that key 
     323. ca = /path/to/cacert.pem 
    2833 
    2934=== bcfg2.conf changes ===