zentral icon indicating copy to clipboard operation
zentral copied to clipboard

Published 20 hours ago verified publisher icon zentralopensource

Client Certificate authentication?

Open juju4 opened this issue 8 years ago • 1 comments

Hello

Do you include any client authentication mechanisms? Or should go through nginx and web client certificates.

Thanks

juju4 avatar Mar 31 '17 20:03 juju4

Hello,

We use a signed token + the serial number. The serial number is not signed because it is set in the postinstall script of the enrollment packages.

We haven't worked on client certificates yet. It could work pretty well with the serial number as the CommonName and the business unit reference as the OrganizationalUnit. The server terminating the TLS connection would have to put the Subject in an extra Header that Zentral could use.

np5 avatar Apr 01 '17 20:04 np5