When using "SSLVerifyClient optional" from mod_ssl in httpd, if the browser doesn't have a certificate or the user choose not to select one will client be authenticated?

Solution In Progress - Updated -

Issue

When using SSLVerifyClient optional from mod_ssl in httpd and the client does not provide a certificate, will the client still be authenticated and complete SSL handshake?

Environment

  • Red Hat Enterprise Linux (RHEL) 6.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In