[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [virt-tools-list] TLS authentification

Le jeudi 01 octobre 2009 à 14:03 +0200, Daniel Huhardeaux a écrit :
> Hello,
> I installed libvirt on two servers and use my laptop as client. On both 
> servers I could without any problem modify the TLS x509 certificate 
> configuration in /etc/libvirt/libvitrd.conf to fit my needs (changing 
> directories and files name).
> On the client, it's another story. All certificats need to be located in 
> /etc/pki/[CA|libvirt] directories. Ok, can be. But other problem is with 
> the file names which are cacert.pem clientcert.pem and clientkey.pem
> How to get them renamed as I have 2 servers to connect on :-( ? At this 
> time I use same certs for both of them but that's not a solution.

I had the same problem, so for now, I've switched to SSH instead of TLS
(as I can manage different keys for different servers and automatically
choose the good one in .ssh/config). But it'd be great to be able to
specify CA, cert and key files on a per connection basis when adding a
new connection using TLS. We should also be able to specify certs files
for VNC connections (also on a per connection basis)


> Thanks for any hint
Daniel Berteaud
Société de Services en Logiciels Libres
Technopôle Montesquieu
Tel : 05 56 64 15 32
Fax : 05 56 64 15 32
Mail: daniel firewall-services com
Web : http://www.firewall-services.com

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]