Is there any reason for this? Can we submit an enhancement request, or a patch?
Thanks, Osama -----Original Message----- From: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org] On Behalf Of Viktor Dukhovni Sent: 15 June 2017 01:39 To: postfix-users@postfix.org Subject: Re: Inbound TLS Certificate SAN Verification On Wed, Jun 14, 2017 at 08:47:31PM +0000, Osama Al-Hassani wrote: > When verifying client certificates we are only able to receive CN > data, and cannot get a hold of the SANs. The request data sent to the > policy server does not contain any SAN attributes. That's correct. The subject alternative names of client certificates are not exposed via the policy protocol. > Is there a way to achieve this, possibly via a configuration parameter? No. -- Viktor. ---------------------------------------------------------------------------------------------- Message Processed by the Clearswift V4 Engineering Dogfood Secure Email Gateway This e-mail and any files transmitted with it are strictly confidential, may be privileged and are intended only for use by the addressee unless otherwise indicated. If you are not the intended recipient any use, dissemination, printing or copying is strictly prohibited and may be unlawful. If you have received this e-mail in error, please delete it immediately and contact the sender as soon as possible. Clearswift cannot be held liable for delays in receipt of an email or any errors in its content. Clearswift accepts no responsibility once an e-mail and any attachments leave us. Unless expressly stated, opinions in this message are those of the individual sender and not of Clearswift. This email message has been inspected by Clearswift for inappropriate content and security threats. To find out more about Clearswift’s solutions please visit www.clearswift.com
