如何使用PKI在apache 2.4上的mod_ssl中获取SSL_CLIENT_SAN_ * env变量*

时间:2015-11-20 03:39:45

标签: php apache wampserver mod-ssl

我是apache PKI证书和php的新手。我试图在$ _SERVER数组(php)中找到SSL_CLIENT_SAN_(email)环境变量。我可以看到其他mod_ssl环境变量,但不能看到SSL_CLIENT_SAN _ *。

我使用wamp,如果有任何影响

我需要设置配置吗?

我已经设定了:

SSLOptions +StdEnvVars 
<FilesMatch "\.(cgi|shtml|phtml|php)$">
    SSLOptions +StdEnvVars
</FilesMatch>
<Directory "/Apache24ah64/cgi-bin">
    SSLOptions +StdEnvVars
</Directory>

我在$ _SERVER中有以下内容:

[SSL_TLS_SNI] => SOMESERVERURL 
[SSL_SERVER_S_DN_CN] => SOMESERVERURL
[SSL_SERVER_I_DN_O] => Root CA 
[SSL_SERVER_I_DN_OU] => http://www.cacert.org 
[SSL_SERVER_I_DN_CN] => CA Cert Signing Authority 
[SSL_SERVER_I_DN_Email] => support@cacert.org
[SSL_CLIENT_S_DN_C] => US [
[SSL_CLIENT_S_DN_O] => SOMEOGANIZATION
[SSL_CLIENT_S_DN_OU] => ECA 
[SSL_CLIENT_S_DN_OU_1] => SOMECOMPANY
[SSL_CLIENT_S_DN_OU_2] => SOMECOMPANY 
[SSL_CLIENT_S_DN_CN] =>LastName.FirstName.ABCDEFG1234567.ID 
[SSL_CLIENT_I_DN_C] => US
[SSL_CLIENT_I_DN_O] => SOMEOGANIZATION 
[SSL_CLIENT_I_DN_OU] => ECA
[SSL_CLIENT_I_DN_OU_1] => Certification Authorities
[SSL_CLIENT_I_DN_CN] => SOMEOGANIZATION 
[SSL_VERSION_INTERFACE] => mod_ssl/2.4.9 
[SSL_VERSION_LIBRARY] => OpenSSL/1.0.1g 
[SSL_PROTOCOL**]=> TLSv1.2 
[SSL_SECURE_RENEG] => true 
[SSL_COMPRESS_METHOD] => NULL 
[SSL_CIPHER] => ECDHE-RSA-AES128-GCM-SHA256 
[SSL_CIPHER_EXPORT] =>false
[SSL_CIPHER_USEKEYSIZE] => 128 
[SSL_CIPHER_ALGKEYSIZE] => 128
[SSL_CLIENT_VERIFY] => SUCCESS 
[SSL_CLIENT_M_VERSION] => 3
[SSL_CLIENT_M_SERIAL] => 1EDF 
[SSL_CLIENT_V_START] => Aug 18 18:42:46 2015 GMT 
[SSL_CLIENT_V_END] => Aug 17 18:42:46 2016 GMT
[SSL_CLIENT_V_REMAIN] => 272 
[SSL_CLIENT_S_DN] => CN=LastName.FirstName.ABCDEFG1234567.ID,OU=R2AD,OU=ORC,OU=ECA,O=SOMEOGANIZATION,C=US
[SSL_CLIENT_I_DN] => CN=SOMEOGANIZATION,OU=Certification  Authorities,OU=SOMEOGANIZATION,O=SOMEOGANIZATION,C=US
[SSL_CLIENT_A_KEY] => rsaEncryption 
[SSL_CLIENT_A_SIG] => sha1WithRSAEncryption 
[SSL_SERVER_M_VERSION] => 3
[SSL_SERVER_M_SERIAL] => 116DAF 
[SSL_SERVER_V_START] => Nov 19 11:38:28 2015 GMT 
[SSL_SERVER_V_END] => May 17 11:38:28 2016 GMT
[SSL_SERVER_S_DN] => CN=SOMESERVER 
[SSL_SERVER_I_DN] => emailAddress=support@cacert.org,CN=CA Cert Signing Authority,OU=http://www.cacert.org,O=Root CA 
[SSL_SERVER_A_KEY] =>rsaEncryption 
[SSL_SERVER_A_SIG] => sha256WithRSAEncryption
[SSL_SESSION_RESUMED] => Initial

感谢帮助

1 个答案:

答案 0 :(得分:0)

SSL_CLIENT_SAN_ *环境变量存在于apache 2.4.10及更高版本中。

相关问题
最新问题