On Mon, Oct 26, 2009 at 10:36 PM, Berube, Steve (HP Software) <steve.berube@xxxxxx> wrote: > <Directory "C:/Program Files/Apache Software Foundation/Apache2.2/cgi-bin"> > > SSLVerifyClient require > > SSLVerifyDepth 10 > > SSLOptions +StdEnvVars > > </Directory> Can you simplify your testing by setting this outside of per-directory config? Have you used wireshark to see if Apache is sending the proper list of trusted certificates that line up with whoever signed your certs in your HW device? Perhaps http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslcertificatechainfile or http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslcacertificatepath might help? -- Eric Covener covener@xxxxxxxxx --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|