On Mon, Oct 26, 2009 at 10:36 PM, Berube, Steve (HP Software) <[email protected]> wrote: > <Directory "C:/Program Files/Apache Software Foundation/Apache2.2/cgi-bin"> > > SSLVerifyClient require > > SSLVerifyDepth 10 > > SSLOptions +StdEnvVars > > </Directory>
Can you simplify your testing by setting this outside of per-directory config? Have you used wireshark to see if Apache is sending the proper list of trusted certificates that line up with whoever signed your certs in your HW device? Perhaps http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslcertificatechainfile or http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslcacertificatepath might help? -- Eric Covener [email protected] --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [email protected] " from the digest: [email protected] For additional commands, e-mail: [email protected]
