Redirect user on SSL authentication failure
Solution 1:
It is a common misconception that a web server can "do something" instead of displaying most (maybe all) SSL errors in the browser.
This is because the SSL handshake occurs first and completely independently of any HTTP communication. Though we treat it as one, HTTPS is not really a different protocol to HTTP, it is "HTTP over and encrypted channel between your browser and the server".
If the client presents an invalid certificate the SSL handshake fails, you get an error. At this point no HTTP communication has occurred and thus no opportunity to redirect the user exists.