Hello, I'm hoping that someone will help me by pointing to some reading on the following matter. I'm currently in the process of creating a very special web site - a site for just about 50 people of the medical profession (it will not be open to the public). Obviously, I need some secure authentication system - and I wonder if I can use certificates (in addition to the login/password routine). I know I can create a SSL certificate on my ISPConfig server (from inside the panel), but I'm thinking about something different. Is there a way to create a number of client certicates and send them to the users so that they could import them in their browsers and then make Apache on my web server only serve content to those who have one of these certificates installed?
There is a pam module maybe you can build a solution around this http://www.opensc-project.org/pam_pkcs11/
