[rabbitmq-discuss] Authenticate client using certificate only

jiri at krutil.com jiri at krutil.com
Tue Aug 17 10:46:08 BST 2010


> In some specific use cases you might indeed want to associate AMQP  
> user identifies with a certificate's CN. In the general case though  
> you'd probably want to allow for a many-to-many mapping.

I understand that certificate-based authentication cannot be used by  
default. It could however be supported as an alternative to  
username/password authentication.

I can imagine that extracting the username from the certificate  
subject could also be made configurable, for example using a custom  
function that takes the subject data and returns the username.

> This has been considered, but there are no concrete implementation  
> plans for such a feature.

Any chance this will be implemented? I believe this feature would  
increase the level of security required by some enterprise applications.


More information about the rabbitmq-discuss mailing list