Try to authenticate a user visiting a public page via client certificates.

Currently, if a user holding a client certificate visits a public page, they will be offered the option to login using a password. There is no way for them to authenticate without knowing the path to a protected page.