Web Server Authentication
The Web Server Authentication section controls the configuration of the SSL Client Certificate authentication permissions. The two options are a password or an SSL Client Certificate. This setting will control the option available for users to log into the Nessus server via SSL client certificate or password authentication.
- The “an SSL Client Certificate” option configures the Nessus web server to only accept connections from web browsers that present a valid SSL client certificate. Other connection attempts will be rejected by the web server with the exact message displayed dependent on the web browser in use.
- The “a password” option configures the Nessus web server to ignore any SSL client certificates but allow the web browser connection. This is the default setting and works with most web browsers without issue.