Why does the documentation state that a client does not need to include its private key and certificate in its configuration? It says to only use the CA public certificate (ca.pem). Peter