Comodo EV SSL cert on nginx

Kurt Hansen khansen at charityweb.net
Tue Feb 17 14:43:11 MSK 2009


Igor Sysoev wrote:
> On Mon, Feb 16, 2009 at 04:48:04PM -0500, Kurt Hansen wrote:
>   
>> Hello,
>>
>> I'm just starting to evaluate nginx for our use. Looking good so far!
>>
>> One of our biggest clients uses an EV SSL cert from Comodo. The EV certs 
>> have nice features on FireFox 3 and IE7; the address bar changes color 
>> and show the full name making customers more comfortable in making 
>> credit card transactions. Or so the theory goes.
>>
>> For Comodo, you have to add their certs to the CA bundle and use 
>> ssl_certificate_client directive. I believe I've implemented this 
>> properly and it appears to be working.
>>     
>
> ssl_certificate_client is for client authentication.
>
> You need to
>
>    cat your_cert comodo_ca_bundle > bundle_cert
>
> and use
>
>     ssl_certificate   bundle_cert;
>   
Thank you, Igor! That is what it says in the documentation, isn't it? 
:-) I misread it the first few times.

It's working now!

Moving on to figuring out reverse proxy and rewrite.

Take care,

Kurt
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://nginx.org/pipermail/nginx/attachments/20090217/9d2f09a6/attachment.html>


More information about the nginx mailing list