Hi, I still can not solve the problems. I could'nt figure out why I can't get the client cert chain from mod_ssl. I have installed a client certs in my browser. There are three certificates in the client certificate chain. I have installed the root CA's cert to my apache server, but not the intermediate CA. From the log file generated by mod_ssl, I can see that the browser is senting the cert chain to the apache, and the apache server is doing certificate verification to all the certs in the chain (including the intermediate CA's cert, this proof the the apache server is getting the cert chain.) But my module can not obtain the certifcate chain from the CGI variable SSL_CLIENT_CERT_CHAIN_n. I can not proceed further with my project because of this problem, so I'd really appreciate if any of you can help. Thanks, Raymond -------------------------------------------------------------------- Hi, I have some questions about SSL_CLIENT_CERT_CHAIN_n, the CGI variable provided by Mod_SSL. I'd really appreciate if someone can answer my question. I tried to obtain the client certificate chain, I specified "SSLOptions +ExportCertData" in httpd.conf. I obtained the client certificate successfully. (from the CGI variable: SSL_CLIENT_CERT). However, I couldn't get any other certificates in the certificate chain. I also tried to get SSL_CLIENT_CERT_CHAIN_0, which supposed to be the client certificate, yet, it is not available either. I wonder if anyone have ever obtained the client certificate chain successfully from SSL_CLIENT_CERT_CHAIN_n? Thanks a lot Raymond _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
