I am creating a website (with OpenResty, but I don't believe that is relevant) which accepts only HTTPS connections with client certificate verification. I followed http://www.integralist.co.uk/posts/clientcertauth.html for generating my own Certificate Authority, a Certificate Signing Request, and a CRT. I then tested that my webserver properly accepts this CRT when I go to a URL with python
certName = "mycert"
cert = (certName + ".crt", certName + ".key")
response = requests.get(url, params=urlencode(payload), cert=cert, verify=False, stream=True)
Now, I am trying to access the same URL from Google Chrome. I used Settings --> HTTPS/SSL --> Manage certificates --> Import to import my CRT file. However, whenever I go to the URL, I always get 400 Bad Request - no required SSL certificate was sent. By looking at nginx error log, I confirmed that "client sent no required SSL certificate"
How do I tell Chrome to use a certificate for a specific URL?