Many thanks to those of you who have helped me on this. Unfortunately I still have the problem. I have also duplicated the problem on a completely different environment, so I think it is either me, or the certificates I am using !
I have taken all of you advice and set up the web server like this: SSLCertificateFile .../conf/ssl.crt/server.crt SSLCertificateKeyFile .../conf/ssl.key/server.key SSLCACertificateFile .../conf/ssl.crt/cacert.crt SSLVerifyClient require SSLVerifyDepth 2 where the cacert.crt file has both the sub and the root CA certificates in it. The error I am getting in the apache log is: mod_ssl: Certificate Verification Error (24): invalid CA certificate I have checked the certificate and chain via the openssl command: openssl verify -CAfile cacert.crt server.crt and this is fine. Does anybody know where I can get a good description of the conditions that produce the above mod_ssl error ? I don't even know if this is a problem with the certificates on the server, or the certificates passed by the client. Yours hopefully, Chris... ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
