We have published a SharePoint 2013 environment with several applications installed on SharePoint.
Both client ssl and server ssl profiles are in use in all VIPS.
SharePoint use SNI (Serve...
What you'll want to look for is the headers in the 401 response to cURL, and the headers in the browser's request. Most likely an "Authorization" header.