For some time now on our site we have had a password protected directory, most all the protected content is localized to a single directory. I would like to ramp up security a bit for this directory and use Personal Digital Certificates.

I have done only some light reading and it appears our organization can create the certificate using openssl on the server (we currently have a valid Thwate cert for our domain), issue the certificate to a trusted user, allow them to install on their browser. In httpd.conf we setup a directive to require certs for a particular directory and it should then be protected. Quick and Dirty Basics.

Can anyone supply some tips, tutorials or? to actually getting this to work? Most of what I have read online has been very basic and none of it step by step...

The most difficult tasks are:
- Creating the "Personal" digital certificate on the server with openssl.
- How to install in the client browser?
- Directive in httpd.conf