All,

I've been trying with Apache 2.0 to setup client based certificate
authenticaiton to a secure portion of our website with no luck.  I can
get Apache to repond with the request to "select" the browser cert for
authentication; however, there are no certs in the list.  I suppose it
is because my SSLCACertificateFile setup is incorrect.  But, I just
can't find any good examples/explaniations.  I'm sure I'm using the
wrong cert or something but I'm stuck.  The apache error_log gives the
following:

[Mon Jan 09 22:06:59 2006] [error] Re-negotiation handshake failed: 
Not
accepted by client!?

I suspect this is telling me that the browser and client cert don't
match.  If anyone can provide me a good explaniation of how to create a
cert bundle (which may be what I can't figure out how to do) or any
other advice...would be appreciated.

Thanks in advance.
Tim

[ Post a follow-up to this message ]