I am interested in enabling client certificate authentication with Dovecot (and Postfix). I was reading:
http://wiki2.dovecot.org/SSL/DovecotConfiguration
But I have a question:
Is it possible to make client certificate authentication with Dovecot optional? So if a user presents a client certificate they will be authenticated but if they don't then they can login "normally" using their password...is this possible?
If you enable client certificate authentication for Dovecot will this break Roundcube (since it is an IMAP front end)?
Ultimately I would like to use normal passwords for Roundcube and K9 on Android but when using Thunderbird I would like to present a client side certificate for authentication.
Thank you!
http://wiki2.dovecot.org/SSL/DovecotConfiguration
But I have a question:
Is it possible to make client certificate authentication with Dovecot optional? So if a user presents a client certificate they will be authenticated but if they don't then they can login "normally" using their password...is this possible?
If you enable client certificate authentication for Dovecot will this break Roundcube (since it is an IMAP front end)?
Ultimately I would like to use normal passwords for Roundcube and K9 on Android but when using Thunderbird I would like to present a client side certificate for authentication.
Thank you!