I have a fully implemented TLS Lets Encrypt configuration and it all works fine.
Users log in to the secure website with their username and password,
I want to follow this guide to client side certificates https://gist.github.com/mtigas/952344
rather than using a self signed CA I’d like to use my LetsEncrypt certificate to authenticate user certificates.
*I’ve never used client certificates before, i’ve used user keys from openssl for ssh.
The aim of this is for users to login using the user/pass and then be able to create a certificate, to store and no longer require password based logon.
any tips on how to do this?