For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Maria_Carpinter's avatar
Maria_Carpinter
Icon for Nimbostratus rankNimbostratus
Oct 21, 2013

Authenticate clients with server certificate

We've configured a virtual server, with SSL Client profile, in order to authenticate clients with a corporative CA. This CA generates only server certificates, so it doesn't work.   When we try to...
application delivery
design
devops
iRules
What_Lies_Bene1's avatar
What_Lies_Bene1
Icon for Cirrostratus rankCirrostratus
Oct 21, 2013

I'd say this is very risky. Even if there was a way (and I don't think there is) you would be modifying the standard operation of a protocol you rely on for security with the possibility of actually weakening your security and possibly leading to unintended consequences.

 

I would suggest that whatever work is required to allow/change the CA to produce client certificates (or use of a different CA) is preferable to subverting your own security.