VERIFY_CLIENT_CERTIFICATE { YES | NO }
default NO - The server requires the client to supply an X.509 certificate. Unless X509_AUTHENTICATION is enabled, a username and password must still be supplied by the client.
Must be specified within SUBSYSTEM COMM_PROTOCOL SSL (see TLS).