Client certificate common name? Subject alternative name?

Asked Oct 11 '19 at 05:42

Active Oct 11 '19 at 05:42

Viewed 1,289 times

I want to secure client server communication. I want both the server and the clients identify/authenticate each other.

I would like to know, how to set common name and subject alternative names for clients on server? As we know, on client side, we can use hostname verifier, But how to do that on server side?

Thanks!

asked Oct 11 '19 at 05:42

gatesking

On the client side, your certificates will be either for a device (ex: IoT) or a person (ex: user of a browser). It depends who delivers the client certificates: you or some external public CA? – Patrick Mevzek Oct 11 '19 at 17:38
It's external public CA. I think on server side, we cannot got hostname or domain name of client, so things will be different from client side verify(useally we compare the target hostname with server sans and cns). Should it be that: on server side, we ask user to configurate sans and cns they trusts, and then compare them with sans and cns of client certificates? – gatesking Oct 12 '19 at 09:54

Client certificate common name? Subject alternative name?

0 Answers0