Nginx ssl_trusted_certificate directive problem

niegus nginx-forum at
Fri Jun 14 10:09:22 UTC 2019


I have my nginx configured with client_certificate authentication:

ssl_client_certificate  /etc/nginx/ssl/cas.pem;
ssl_verify_client optional; 
ssl_verify_depth 2;
And is working fine, but I need to NOT send the CAs to the client during the

I've seen
in the documentation. So, I've changed it to:

ssl_trusted_certificate  /etc/nginx/ssl/cas.pem;
ssl_verify_depth 2;

But now ssl_client_verify is always to NONE, and actually I saw in wireshark
that the client is not sending the certificate.

What am I doing wrong?


Posted at Nginx Forum:,284531,284531#msg-284531

More information about the nginx mailing list