[virt-tools-list] TLS authentification
Daniel Huhardeaux
tech at tootai.net
Thu Oct 1 13:02:25 UTC 2009
Daniel Berteaud a écrit :
> Le jeudi 01 octobre 2009 à 14:03 +0200, Daniel Huhardeaux a écrit :
[...]
>> On the client, it's another story. All certificats need to be located in
>> /etc/pki/[CA|libvirt] directories. Ok, can be. But other problem is with
>> the file names which are cacert.pem clientcert.pem and clientkey.pem
>>
>> How to get them renamed as I have 2 servers to connect on :-( ? At this
>> time I use same certs for both of them but that's not a solution.
>
> I had the same problem, so for now, I've switched to SSH instead of TLS
> (as I can manage different keys for different servers and automatically
> choose the good one in .ssh/config).
But ssh you need to accept root connections, I can't agree with that.
> But it'd be great to be able to
> specify CA, cert and key files on a per connection basis when adding a
> new connection using TLS. We should also be able to specify certs files
> for VNC connections (also on a per connection basis)
Same here ;-)
More information about the virt-tools-list
mailing list