I finally found something that seems to work:
SSLCACertificateFile /etc/apache2/ssl/ca.crt
SSLVerifyClient optional
SSLVerifyDepth 1
SSLOptions -StdEnvVars -ExportCertData -FakeBasicAuth +StrictRequire
SSLRequireSSL
SSLRequire %{SSL_CLIENT_S_DN_O} eq "xxx" and %{SSL_CLIENT_S_DN_OU} eq "xxx"
Hello,
Actually i am using certificate authentication and it works well, but i would
like to allow some specific ip address to access my site without certificate.
I have tried several things with "allow from xxx" and "Satisfy any" but i
failed to setup this correctly.
The actual configuration:
