24 Mar
2021
24 Mar
'21
12:49 p.m.
On 3/24/21 12:32 PM, Alan DeKok wrote:
Read the debug output. It prints out which TLS-Clinet-Cert attributes are available, where they go, and what their values are. Yes, and in fact there is a misunderstanding on my side : I am looking for X509v3 Certificate Policies, which are not in the debug output and therefore not in the TLS-Client-Cert-X509v3-Extended-Key-Usage-OID attribute.
I understand that I can check them with the external 'openssl verify' command, I will try that. Regards, Arnaud Lauriou