> does rt3 support authentification via X.509 ssl client certificates? Using External Authentication, yes. For Apache 1 mod-ssl, you should be able to use SSLFakeBasicAuth. In Apache 2 it's SSLOptions +FakeBasicAuth Read the documentation for your webserver for more details.