[rabbitmq-discuss] ssl certificate to client lookup
Simon MacMullen
simon at rabbitmq.com
Thu Dec 9 11:27:15 GMT 2010
On 09/12/10 07:53, jiri at krutil.com wrote:
> Simon,
>
>> Also, bug23467 (not yet QAed) allows your clients to use the SASL
>> EXTERNAL mechanism to log in using a client certificate, which may be
>> interesting to you.
>
> This sounds very promising for us. Can you explain how will that work?
In short: the SASL mechanisms used by the server and clients will become
configurable and plugin-based. We'll be offering an EXTERNAL plugin that
uses a verified client certificate for login.
> Will the client identity be extracted from the client certificate's
> subject?
Yes, ATM it's just the common name from the subject.
> Will the client still need to specify username and password for
> login?
No.
Cheers, Simon
--
Simon MacMullen
Staff Engineer, RabbitMQ
SpringSource, a division of VMware
More information about the rabbitmq-discuss
mailing list