Re: [stunnel-users] Possible to verify client certificate BUT ignore expiration-date?
Use openssl to make a private cert? E -----Original Message----- From: stunnel-users [mailto:stunnel-users-bounces@stunnel.org] On Behalf Of Christopher Schultz Sent: Monday, May 13, 2019 2:28 PM To: stunnel-users@stunnel.org Subject: [stunnel-users] Possible to verify client certificate BUT ignore expiration-date? All, Does anyone know if it is possible to perform all other verification of a client certificate EXCEPT allow the certificate to have expired? We have a vendor whose certificate has expired, and we want to allow their old certificate to work while they chase their tails trying to figure out the best way to re-issue a new cert for us. *eyeroll* Is it possible? Thanks, -chris
Eric, On 5/13/19 18:06, Eric Eberhard wrote:
Use openssl to make a private cert?
What is a "private cert"? Also, I need to trust an existing certificate... If they can create a new certificate, then I can just trust the new one. I'm looking for a stop-gap measure, here. Thanks, -chris
-----Original Message----- From: stunnel-users [mailto:stunnel-users-bounces@stunnel.org] On Behalf Of Christopher Schultz Sent: Monday, May 13, 2019 2:28 PM To: stunnel-users@stunnel.org Subject: [stunnel-users] Possible to verify client certificate BUT ignore expiration-date?
All,
Does anyone know if it is possible to perform all other verification of a client certificate EXCEPT allow the certificate to have expired?
We have a vendor whose certificate has expired, and we want to allow their old certificate to work while they chase their tails trying to figure out the best way to re-issue a new cert for us. *eyeroll*
Is it possible?
Thanks, -chris
participants (2)
-
Christopher Schultz -
Eric Eberhard