[openssl-users] 'No client certificate CA names sent'

Benjamin Kaduk bkaduk at akamai.com
Mon Jan 30 17:01:35 UTC 2017

On 01/30/2017 10:44 AM, russellbell at gmail.com wrote:
> 	Quoth Mr Viktor Dukhovni, 'it is often wise to send an empty
> list when requesting client certificates.'
> 	How does one send an empty list?

That's generally the default server behavior when no CAs are configured
for that purpose.  But, (1) I thought you were looking at the client
side, and (2) how to configure the server depends on what software is
used on the server, so there's not much more to say right now.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20170130/b5fff4b9/attachment-0002.html>

More information about the openssl-users mailing list