## Durumdara (durumd...@gmail.com): > Do we have chance to log somewhere the connected client's certificate, or > some info about it?
There's pg_stat_ssl, and if you had an recent version of PostgreSQL (9.6 is too old for that), you'd even have the serial number of the certificate in there: https://www.postgresql.org/docs/12/monitoring-stats.html#PG-STAT-SSL-VIEW On the other hand, you could check the certificates directly, e.g. https://github.com/matteocorti/check_ssl_cert or even just some scripting around openssl. (That assumes that you know where those client certificates are). Regards, Christoph -- Spare Space
