SóProvas

ID
1118197
Banca
CESGRANRIO
Órgão
FINEP
Ano
2014
Provas
Disciplina
Sistemas Operacionais
Assuntos

O servidor Web Apache oferece suporte à SSL/TLS. Para configurar o Apache para forçar os clientes HTTP a se autenticarem usando certificados digitais, o administrador deve utilizar a opção;

Alternativas
Comentários

  • O gabarito oficial considerou a letra D como correta.

  • SSLClientCert required:
    Determina se os usuários que assinam para a interface HTTPS será exigida a apresentação de um certificado de cliente SSL válido para autenticar no sistema.

    Fonte:https://teledistrib.cegedim.fr/doc/en/MOVEitDMZ_WebInterface_Settings_Security_InterfacePolicy.htm

    SSLVerifyClient require:
    Esta directiva define o tipo de verificação de certificado para autenticação do cliente.

    Fonte: http://www.apacheref.com/ref/mod_ssl/SSLVerifyClient.html


  • This directive sets the Certificate verification level for the Client Authentication. Notice that this directive can be used both in per-server and per-directory context. In per-server context it applies to the client authentication process used in the standard SSL handshake when a connection is established. In per-directory context it forces a SSL renegotiation with the reconfigured client verification level after the HTTP request was read but before the HTTP response is sent.

    The following levels are available for level:

    none: no client Certificate is required at all

    optional: the client may present a valid Certificate

    require: the client has to present a valid Certificate

    optional_no_ca: the client may present a valid Certificate
    but it need not to be (successfully) verifiable. This option cannot be relied upon for client authentication.

    Example

    SSLVerifyClient require

     

    https://httpd.apache.org/docs/2.4/mod/mod_ssl.html