I'm not experiencing this problem with IE and Opera. Also, I've noticed that both IE and Opera ask the user to choose which certificate to present to the server which is not Mozilla's case.
Did I miss anything in Mozilla's configuration? Any suggestions?
That 12227 error happens when you present the webserver with either an incorrect or no cert for client auth.
A couple things I can think of...
-Did you import the CA certs into mozilla and edit the trust settings for your root CA?
-Edit->Preferences->Privacy&Security->Certificates->Client Certificate Selection - Do you have that set to "Ask Every Time"? That's what makes Mozilla pop up the box asking you to choose a certificate to present to the webserver. If you enable this option it will present the box even if there is only 1 client cert available.
-In your httpd.conf you have SSLVerifyDepth set to 1. I think you need a minimum of 2 because it is verifying your client cert and then the rootCA cert. If you have another CA in between the root and yourself make it 3. I think this gives you a different error though...
Good Luck Dave _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
