In Apache and IIS you can specify Optional SSL Client authentication. If Optional Client Authentication is specified should/does Mozilla prompt the user for their PIN to access their certificates? Or will Mozilla even know that SSL client authentication is supported by the server? I want a web server module that can do SSL Client authentication but if it fails redirect the user to a username password form. I know how to do this if I have two servers (one which forced SSL Client auth and one that supports just forms auth), but I’m trying to figure out how to do it on just one server.
Thanks,
Christopher
--------------------------------------
Christopher Nebergall
Sandia National Laboratories
System Security Research and Integration
505-284-8408
