Client certificates and custom revoked html

Ask Question

Asked 1 month ago

Modified 1 month ago

Viewed 28 times

I can configure Apache to authenticate users with client certificate and validate them via OCSP. Do you know how can I redirect the user to a custom html page if the certificate is revoked? The maximum I have achieved is getting a SSL error, which work fine but it is not user friendly.

I was thinking with SSLVerifyClient optional_no_ca and rewrite rules, but I don't know exactly how to do it.

Thanks.

edited May 16 at 13:39

Mircea Vutcovici

18.6k4 gold badges59 silver badges83 bronze badges

asked May 16 at 13:23

Tibor

1211 bronze badge

Is this question related ? serverfault.com/questions/564180/… I wonder as the SSL error is often displayed on the browser's own ssl error page.
– yagmoth555 ♦
Commented May 16 at 15:31
1

You cannot do this as long as Apache is doing the validation and abandons the TLS handshake. Does this answer your question? Apache custom error page (ssl_connection_error)
– Steffen Ullrich
Commented May 16 at 16:11
ErrorDocument 401 or 403 should deal with those IIRC.
– Daniel Ferradal
Commented Jun 8 at 20:04

Add a comment |

Stack Exchange Network

Client certificates and custom revoked html

0

You must log in to answer this question.

Browse other questions tagged
ssl
apache-2.4
ssl-certificate
certificate
x509
.

Linked

Hot Network Questions

Client certificates and custom revoked html

0

You must log in to answer this question.

Browse other questions tagged sslapache-2.4ssl-certificatecertificatex509.

Linked

Related

Hot Network Questions

Browse other questions tagged
ssl
apache-2.4
ssl-certificate
certificate
x509
.