diff --git a/server/dbdata/cert_client.go b/server/dbdata/cert_client.go
index 758ba97..d2e7076 100644
--- a/server/dbdata/cert_client.go
+++ b/server/dbdata/cert_client.go
@@ -345,7 +345,7 @@ func ValidateClientCert(cert *x509.Certificate, userAgent string) bool {
 
 	// 检查证书状态
 	if clientCertData.GetStatus() != CertStatusActive {
-		base.Error("证书验证失败：证书状态为", clientCertData.GetStatusText())
+		base.Error("证书验证失败：", user.Username, "证书状态为", clientCertData.GetStatusText())
 		return false
 	}
 
diff --git a/server/handler/link_auth.go b/server/handler/link_auth.go
index 9efe1e9..8f3cba6 100644
--- a/server/handler/link_auth.go
+++ b/server/handler/link_auth.go
@@ -108,7 +108,6 @@ func LinkAuth(w http.ResponseWriter, r *http.Request) {
 				ua.Status = dbdata.UserAuthFail
 				dbdata.UserActLogIns.Add(*ua, userAgent)
 
-				w.WriteHeader(http.StatusForbidden)
 				return
 			}
 		}
diff --git a/server/handler/server.go b/server/handler/server.go
index 19ecf12..9ce722b 100644
--- a/server/handler/server.go
+++ b/server/handler/server.go
@@ -75,6 +75,7 @@ func startTls() {
 	if base.Cfg.AuthAloneCert {
 		tlsConfig.ClientAuth = tls.VerifyClientCertIfGiven // 验证客户端证书
 		tlsConfig.ClientCAs = dbdata.LoadClientCAPool()    // 加载客户端CA证书
+		base.Info("已启用独立证书验证")
 	}
 	srv := &http.Server{
 		Addr:         addr,