I have a similar requirement. Dave, Did you find a solution for this? The only thing that I can think of currently is have the servers use a basic http auth instead off ssl client cert auth. Posted at Nginx Forum: http://forum.nginx.org/read.php?2,236314,240004#msg-240004