Not logged in. · Lost password · Register
Forum: MatriX RSS
Avatar
LarsKJ #1
Member since Mar 2015 · 12 posts
Group memberships: Members
Show profile · Link to this post
Subject: Certificate validation
What name does Matrix validate ssl certificates againt, the XmppClient.XmppDomain or the Xmpp.Hostname when those differs.

Reason for asking is that Ops wants to terminate the TLS in Big Ip (with an Irule) but don't know which name to use.

Regards
Lars
Avatar
Alex #2
Member since Feb 2003 · 4317 posts · Location: Germany
Group memberships: Administrators, Members
Show profile · Link to this post
it gets validated against the XmppDomain.

Regards,
Alex
Avatar
LarsKJ #3
Member since Mar 2015 · 12 posts
Group memberships: Members
Show profile · Link to this post
Thanks, and what I suspected.

Is it possible to override this behavior and verify against the Hostname somehow?

Lars
Avatar
Alex #4
Member since Feb 2003 · 4317 posts · Location: Germany
Group memberships: Administrators, Members
Show profile · Link to this post
Quote by LarsKJ:
Is it possible to override this behavior and verify against the Hostname somehow?

yes, you can do this in the OnValidateCertificate callback:

  1. private void xmppClient_OnValidateCertificate(object sender, CertificateEventArgs e)
  2. {
  3.     // always accept cert
  4.     e.AcceptCertificate = true;
  5. }

Alex
Close Smaller – Larger + Reply to this post:
Verification code: VeriCode Please enter the word from the image into the text field below. (Type the letters only, lower case is okay.)
Smileys: :-) ;-) :-D :-p :blush: :cool: :rolleyes: :huh: :-/ <_< :-( :'( :#: :scared: 8-( :nuts: :-O
Special characters:
Forum: MatriX RSS