Test that we get the expected error when configuring a client-cert without client-key, or the inverse.