Server configuration

@Snapey exactly! I asked this here just because of the community (and also because Laravel, :) its in server section anyway). I tried different options on apache but all failed. Will read your links and try to configure apache and then report back (sadly i will need same thing for nginx). Although I am not sure how can I validate client certificate without original issuer key. Maybe I am missing something. Anyway, I think this is interesting topic for all requiring this kind of authentication.

I am really surprised that amount of people working with this is so low. In my country we all have custom certificates for companies or for own use on government websites (for taxes or something).

@tsobocan Most cases, you will be validating a self-signed certificate? I've only come across this the once and it was for the Royal Mail in the uk where all their client machines have a certificate installed. They needed my employer's (at the time) saas application to only allow users to connect that had the certificate. We politely refused.

@Snapey not self signed. There are a few issuers in the country (one by government operated, and two others). You cant get this certificate any where else.