| From: | Magnus Hagander <magnus(at)hagander(dot)net> |
|---|---|
| To: | lebedev(at)fas(dot)harvard(dot)edu |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Authenticating with x509 certificate |
| Date: | 2006-12-16 22:12:47 |
| Message-ID: | 45846F5F.8010608@hagander.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Andre Lebedev wrote:
> Hello.
>
> Based on the information I was able to find so far, it seems that
> Postgres has the capability of authenticating users through x509
> certificate. But I can't find instructions on how to do it.
>
> Any help will be greatly appreciated!
>
It does not, unfortunately (yet - IIRC someone was working on it). It
can be configured to *require* a trusted client-side X509 certificate,
but it can't be used for authenticating the user.
To require a client certificate, create a list of root certs to match
against - see http://www.postgresql.org/docs/8.2/static/ssl-tcp.html.
//Magnus
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Magnus Hagander | 2006-12-16 22:14:15 | Re: Failed to set permision Win2k3-PG Installation Issues |
| Previous Message | Brendan Jurd | 2006-12-16 19:25:49 | Re: Functions on tables |