Forum Discussion
2 Way SSL not working as client certificate length is 0
So, if I interpreted this correctly.
Your current scenario has a certain service that requires SSL client authentication and is working as intended.
You need F5 to proxy this traffic. Will it still forward traffic to "original" destination, or will it be a new service with a different fqdn? Also, do you plan on using F5 to offload the SSL from your original service, or do you still need encrypted comunication between f5 <> real server?
In your tests via F5, are you testing traffic "directly" with F5 IP or have you configured a "hosts file"/dns entry to point to F5?
This will help us understand better which profiles are required and what options you should enable 🙂
Regards
CA
- SodamaxApr 04, 2023Altostratus
Yes, I still need encrypted comunication between f5 <> real server and I testing traffic "directly" with F5 IP.
How to config on F5 for send client certificate to destination server?
This my config
Thanks
- CA_ValliApr 05, 2023MVP
There's the option to do it with a HTTP header: https://my.f5.com/manage/s/article/K95338243
Or you can enable ProxySSL on both your client- and server- SSL profiles: https://my.f5.com/manage/s/article/K13385
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com