For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

mrichter's avatar
mrichter
Icon for Nimbostratus rankNimbostratus
Aug 05, 2015

APM: X509_verify_cert failed: error #: 20 at depth 0, error message:unable to get local issuer certificate

I'm having an issue with certificates on Macintosh systems generating this error when attempting to use client certification authentication.   I have the proper CA-bundle applied and a similar c...
BIG-IP Access Policy Manager (APM)
security
kunjan's avatar
kunjan
Icon for Nimbostratus rankNimbostratus
Aug 07, 2015

How about cli using

 

security set-identity-preference -s "https://vpn.domain.com/" -n -c "username or common name"

 

  • mrichter's avatar
    mrichter
    Icon for Nimbostratus rankNimbostratus
    Aug 17, 2015
    I believe this may have been solved previously, but just in case anyone else runs into it the issue was the multiple client certificates being available. Methods to resolve are forcing the client to use a particular certificate when connecting to the VPN or properly marking the "Match Issuer" field in the Machine Cert Auth policy. Thanks for the help Kunjan and Kevin