Brandon Craig Rhodes <brandon@oit.gatech.edu> writes:
> I now have SSL encryption working between psql and my PostgreSQL
> server, but want to enable client verification of the server's SSL
> certificate (and eventually vice-versa).
The problem of which I spoke has mysteriously but happily resolved
itself; the client now refuses to connect to the server unless
presented with an SSL certificate that can be verified using the
root.crt in my ~/.postgresql directory on the client.
My follow-up question: I now want the server to be able to verify the
client's identity. But after giving the server my root.crt, where do
I put the certificate that the client should present to the server?
--
Brandon Craig Rhodes http://www.rhodesmill.org/brandon
Georgia Tech brandon@oit.gatech.edu