I'm not sure if this command for signing the client certificate is correct as I
don't see your corresponding openssl config and if it sets the correct keyUsage
and extensions:
sign client CSR
openssl x509 -req -days 365 -in client.csr -CA ca.crt -CAkey ca.key
-CAcreateserial -out client.crt
I just tried accessing the "/secure/" directory in Edge and got the same
error message after importing my pkcs12 certificate.
I forgot to include the Apache2 error logs...
[Mon Jul 10 03:20:37.629596 2023] [ssl:error] [pid 2410] [client
192.168.0.5:64817] AH10158: cannot perform post-handshake au
I'm stuck. I am trying to use certificate authentication to restrict access
to a directory. I'm using my own certificate authority that I created using
the commands below.
I'm running Apache2 on Debian linux.
*** CA KEYS
create CA private key
openssl genpkey -algorithm RSA -out ca.key -pkeyopt r
