Hi Maarten, *,
Maarten Litmaath wrote:
> David Groep wrote:
>>
>> Assuming you know the port you want to connect to, and the server
>> is using an SSL/TLS protocol, the following will work:
>>
>> /usr/bin/openssl s_client -host rb106.cern.ch -port 9000 \
>> < /dev/null 2>/dev/null | grep subject=
>>
>> gives
>>
>> subject=/DC=ch/DC=cern/OU=computers/CN=rb106.cern.ch
>>
>
> Unfortunately it does not work for a GridFTP server, SRM or gatekeeper...
GridFTP and SRM are indeed not TLS protocols, but httpg (the pre-WS
gatekeeper protocol) is sufficiently close to TLS that s_client gives
a reasonable answer (amongst a lot of errors):
/usr/bin/openssl s_client -host tbn20.nikhef.nl -port 2119 -ssl3 \
< /dev/null 2>/dev/null | grep subject=
subject=/O=dutchgrid/O=hosts/OU=nikhef.nl/CN=tbn20.nikhef.nl
Cheers,
DavidG.
--
David Groep
** National Institute for Nuclear and High Energy Physics, PDP/Grid group **
** Room: H1.56 Phone: +31 20 5922179, PObox 41882, NL-1009DB Amsterdam NL **
|