Re: client without certificate

Marek Marcola Tue, 09 May 2006 06:52:22 -0700

Hello,

> i wrote now my own server but i always get following output:
> Using default temp DH parameters
> Connection from 70da6e53, port dee6
> SSL connection using ADH-RC4-MD5
> Client does not have certificate.
> 
> how can i deactivate the client certificate checking on server side?
Client certificate is requested by server when client authentication
is needed (server sends SSL CertificateRequest packet).
This mechanism may be enabled with:
        SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER |
SSL_VERIFY_FAIL_IF_NO_PEER_CERT, NULL);
or disabled (default) with:
        SSL_CTX_set_verify(ctx, SSL_VERIFY_NONE, NULL);
You should check your code or simply use ssldump to check
if your ssl server sends CertificateRequest packet.
If yes, this may help.


Best regards,
-- 
Marek Marcola <[EMAIL PROTECTED]>

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           [EMAIL PROTECTED]

Re: client without certificate

Reply via email to