[Dovecot] No CA names sent in TLS handshake

Johnny Chadda johnny-06 at chadda.se
Tue Apr 3 10:47:23 EEST 2007


Hello,

I'm setting up Dovecot with client certificates and everything is 
working fine as long as the client only has one certificate in his 
store. If he has more than one, the wrong one might be sent to the server.

The root of the problem is that Dovecot does not send out a list of 
valid CA names in the TLS handshake.

If I connect using openssl s_client I get:

     "No client certificate CA names sent"

I am using Dovecot 1.0 RC15 from backports.org.

Is there a solution to this problem?

Regards,
Johnny


More information about the dovecot mailing list