Is there a "database" for client certificates ?

Alec H. Peterson ahp at
Fri Aug 1 11:39:23 EDT 2003

Typically the way this is accomplished is that you create your own CA and 
issue client certificates from it.  Then you just have Cyrus check the 
client certificate against the set of allowed CAs.  This also gives you 
good control with respect to revoking certificates.


--On Friday, August 1, 2003 17:05 +0200 Loubet Jean-Michel 
<JeanMichel.Loubet at> wrote:

> Hi,
> I'm running cyrus-imapd 2.1.14 with openssl 0.9.7b.
> I've generated and installed server certificate and client certificate.
> My tls authentication (server + client) is ok (with a netscape mail
> client, since it does not work with outlook ...).
> I'd like to know if there's a "database" for client certificates, where
> cyrus manager would be able to choose which clients are authorized to
> connect.
> Thanks a lot,
> Jean-Michel Loubet

Alec H. Peterson -- ahp at
Chief Technology Officer
Catbird Networks,
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pkcs7-signature
Size: 2288 bytes
Desc: not available
Url :

More information about the Info-cyrus mailing list