Forum Discussion

Nimbostratus

Dec 08, 2013

Client authentication prompts (SSL profiles)

Hello all, I was wondering if someone facing below issue when client authentication is implemented with SSL profiles. Every thing works fine after below prompts. User certificate prompt app...

deployment

design

ssl client authentication

Kevin_Stewart

Employee

Jul 24, 2014

I have a similar issue using the Edge Client software. When the user logs in the the certificate is requested twice.

Do you have client certificate request/require enabled in the client SSL profile, the APM On-Demand Cert Auth agent, or both?

Is their anyway to prefix the software to always use the relevant certificate ?

No, there's no way to tell the client which certificate to use. You can suggest which certificate to use, if there are multiple that can be used, by sending a CA "root hint" in the SSL handshake (apply a filtered CA bundle in the Advertised CA list of the client SSL profile).

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Client authentication prompts (SSL profiles)

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

AI Security : Prompt Injection and Insecure Output Handling.

SSL Profiles Part 8: Client Authentication

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

SSL Profiles Part 9: Server Authentication

LTM Authentication Profiles EOL?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS