On tor, 2007-09-13 at 13:18 -0700, techguy005-ml@xxxxxxxxx wrote: > ##### Squid Config ##### > > https_port 192.168.0.2:443 protocol=https accel vhost > cert=/apps/squid2.6.13/etc/ssl/syt-squid.test.com.pem > cafile=/apps/squid2.6.13/etc/ssl/intcatrustedroot.pem > defaultsite=syt-squid.test.com > clientca=/apps/squid2.6.13/etc/ssl/clientca_trusted_root.pem Why is cafile and clientca different? The cafile needs to include the CAs the client certificates is signed by. If your server certificate needs a certificate chain then include this in the server certificate file. > I am at a loss as I'm not sure where the problem is. > According to the Squid 2.6 docs, it should be as > simple as adding in the CA cert for the signer of the > client-cert and adding the "clientca=" directive to > the squid.conf file. It is, assuming it's a trusted CA.. Regards Henrik
Attachment:
signature.asc
Description: This is a digitally signed message part
