Forum Discussion
Kevin_Stewart
Nov 11, 2015Employee
For what it's worth, the server is sending a FIN right after the client's ClientHello. That would never indicate that the server requires a client certificate as the CertificateRequest message is AFTER the server's ServerHello and Certificate messages. At most the reasons for the server not sending a ServerHello would be (in general order of precedence):
- No support for the client's preferred protocol version or list of supported ciphers
- A missing server name indicator (SNI) extension, if the server requires it
- Some unknown or incorrect TLS extension