Jump to content

SSL Reading CAC Card with every page load.

penciled

By penciled
in Apache HTTP Server

 Share

Recommended Posts

penciled Newbie

penciled

Posted
Posted

I'm not the server admin- I just do a little development, but we're having a problem that our admin hasn't been able to resolve.

 

We're required to use PKI - CAC Cards for security reasons so everyone has a card with their cert, they enter their PIN and can gain access.

 

The IIS guys are able to read a card, validate then 'cache' the cert and don't have to read the card again until a new session starts, but we haven't figured out how to do that with Apache.

 

While we only have to enter the PIN one time, the card is read with every page that loads, creating a ~3 second delay, which is undesirable.  Is there an option to have the information from the card cached so re-reading isn't done?

 

I thought it might be the SSLSessionCache, which I have set as follows:

SSLSessionCache dbm:/var/log/apache/ssl_scache

SSLSessionCacheTimeout  300

 

Is there something else I can do?

 

I appreciate any help.  (if more information would help, just let me know and I'll try to get it)

Link to comment
Share on other sites
This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.