Is there any way to use machine auth with a certificate, and lock the cert used by EKU attributes? I have not been successful yet. Looks like it might work with client. I am able to use the subject field in the auth realm and role, but we would rather use the KU/EKU fields. Or any other ideas on how to lock this kind of connection down while using a certificate? Thank you for the help!!
... View more