When I use SSLVerifyClient to specify a client certificate is required for a
certain directory
<Location "/sso">
SSLVerifyClient require
SSLVerifyDepth 10
SSLRequire %{SSL_CIPHER_USEKEYSIZE} >= 40
SSLExportClientCertificates
</Location>
The browser continues to ask me for a client certificate for every object
loaded from the location.
Is this the proper behavior for having SSLVerifyClient require in the
directory format?
If I set SSLVerifyClient for the whole server then I am only asked for the
Client certificate during the first page request.
I have tried using SSLOptions +optRenegotiate in the directory location.
But, I get the following error message whenever I try and access a second
page in the client cert area.
[Thu Nov 1 08:24:33 2001] [error] mod_ssl: Cannot find peer certificate
chain
Configurataion:
Apache/1.3.19 (Unix)
mod_ssl/2.8.2
OpenSSL/0.9.6
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
