Hi
You're right - if with "require" it does not work, then with the "optional" option it probably falls back to not checking your certificate.
How does your full apache configuration look like? I suppose that you added stuff like...
Code:
SSLEngine on
## SSL Cipher Suite:
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /myserv_cert.crt
SSLCertificateKeyFile /mypriv_key.key
SSLCertificateChainFile /mycertchain.crt
SSLOptions StrictRequire
SSLProtocol all -SSLv2
SSLOptions +StdEnvVars
BrowserMatch ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
...right?
And which browser are you using on the client side?
And can by increasing the "LogLevel" option to e.g. "info" do you get more informations when you fail to connect?
Cheers