Peteris

Asked: 2021-03-24 12:23:41 +0800 CST2021-03-24 12:23:41 +0800 CST 2021-03-24 12:23:41 +0800 CST

Debug client certificate authentification in Firefox

I'm having trouble determining why Firefox is not applying client certificate authentification in a particular situation.

I have a self-signed client certificate issued for a specific site (nginx mutual TLS) that works when accessing the site using Chrome and when testing with curl, and the same certificate in .p12 format is imported in Firefox Certificate Manager / Your Certificates; however, Firefox simply gets refused authentification by the site as it does not send the certificate, does not prompt for anything, does not show any errors and does not show any log or comments about the process, at least not where I could find - for example, the Firefox Network tab Security section shows information about the LetsEncrypt server certificate, but nothing about the client certificate request.

Is there some reasonable way to debug the client certificate authentification process in Firefox to review what is happening during the TLS handshake and analyse the problem? The preferences section in Firefox does not seem to have any relevant options other than the certificate manager.

Debug client certificate authentification in Firefox

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

Debug client certificate authentification in Firefox

0 Answers