To resolve this issue, perform the following steps:
- Login to admin console
- Navigate to System > Configuration > Certificates > Trusted Client CAs
- From the list, select the corresponding root certificate
- Under Client certificates status checking, select the checkbox for Trusted For Client Authentication
Note: Participate in Client Certificate Negotiation
should only be enabled of the certificate authority that directly signs the end user certificate. For all other certificates in the chain, only Trusted For Client Authentication is recommended.