How to do client certificate authentication with Apache

Question

The question is very clear but I did not find any useful tutorial online. So I wish I could have some luck here.

Basically, I want to build a client certificate authenti

Answer 1

You'll find instructions on how to create a CA cert and certs signed by this CA cert here: http://pages.cs.wisc.edu/~zmiller/ca-howto/

Things go like this:

• you setup your root CA key and cert
• client generates his private key and certificate request
• they send you the certificate request
• you generate the certificate using the certificate request, your root CA cert and root CA key
• you return the certificate to the client

You can then check that the client presents a certificate which is "signed" by the CA.