how to get rid of "Client side certs may not work" message
Mufit Eribol
hme at onart.com.tr
Wed Apr 23 02:27:16 EDT 2008
Daniel O'Connor wrote:
> On Wed, 23 Apr 2008, Goetz Babin-Ebell wrote:
>> Lukasz Michalski wrote:
>> | Hello,
>>
>> Hello Lukasz,
>>
>> | I have working setup with TLS/SSL encryption based on server
>> | certificate only. I have following message each successful login:
>> |
>> | Apr 22 15:42:46 black imap[26881]: TLS server engine: No CA file
>> | specified. Client side certs may not work
>> |
>> | How can I tell cyrus to ignore CA file and client side certs?
>>
>> Do not configure tls_ca_file and simply ignore the message...
>> This message tells you that cyrus won't do client cert
>> authentication.
>
> It would be nice if it didn't spam the log file with it though..
In my configuration, "tls_ca_file:" and "tls_cert_file:" in
/etc/imapd.conf point to the same file. I am not sure it is the best way
to achieve it, but I don't get the messages you mentioned. BTW, it is a
self-signed certificate.
Best wishes,
Mufit
More information about the Info-cyrus
mailing list