Validating SSL clients using a list of authorised certificates instead of a Certificate Authority
- by Gavin Brown
Is it possible to configure Apache (or any other SSL-aware server) to only accept connections from clients presenting a certificate from a pre-defined list? These certificates may be signed by any CA (and may be self-signed).
A while back I tried to get client certificate validation working in the EPP system of the domain registry I work for. The…