Is there any way to use machine auth with a certificate, and lock the cert used by EKU attributes?
I have not been successful yet. Looks like it might work with client. I am able to use the subject field in the auth realm and role, but we would rather use the KU/EKU fields.
Or any other ideas on how to lock this kind of connection down while using a certificate?
Thank you for the help!!