Hello everyone I have been trying to implement client certificate authentication for almost two days now with no success. The main problem I'm facing is the fact that I cannot get the browser to request the certificate. I have the SSLVerifyClient set to optional_no_ca because If I were to use a CA I would have to add an additional SSLCACertificateFile witch causes a "Your SSL library does not have support for per-directory CA" error and if i try to defin a SSLCADNRequestFile it notifies me that "SSLCADNRequestFile is not allowed here" I have setup SSL with a certificate from Let's encrypt and it works, also I am setup on Tommy .My .htaccess file in public_html is defined as so: RewriteEngine OnRewriteCond %{HTTPS} !=onRewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L] SSLVerifyClient optional_no_ca SSLVerifyDepth 1 SSLOptions +StdEnvVars I've setup an index file with the following php function: <?php function hasValidCert() { if (!isset($_SERVER['SSL_CLIENT_M_SERIAL']) || !isset($_SERVER['SSL_CLIENT_V_END']) || !isset($_SERVER['SSL_CLIENT_VERIFY']) || $_SERVER['SSL_CLIENT_VERIFY'] !== 'SUCCESS' || !isset($_SERVER['SSL_CLIENT_I_DN']) ) { return false; } if ($_SERVER['SSL_CLIENT_V_REMAIN'] <= 0) { return false; } return true; }; if (hasValidCert()){ echo 'Pass.'; }else{ echo 'Fail.'; } and tried loading the page in Chrome, Firefox and Internet Explorer neither of which have asked me to provide a certificate (i have 2 client certificates installed, one that is self-signed and the other signed with a CA certificate made with openssl) Could someone please point out weather I'm doing something wrong or if it's even possible to do this on heliohost? Kriss