this may be a dumb ssl question, but here goes...

[AJ Weber]

Can I install and configure nginx to use a "public"/global CA's SSL 
Certificate like Verisign, AND force (require) the use of client SSL 
certificates, AND allow those client/browser-certificates to be from a 
different CA/root?  For example, openca or some self-signed setup that I 
use to just distribute client certificates to my registered users?

Let me know if I am not asking the question correctly.

Thanks,
AJ