Forum Discussion

THE_BLUE's avatar
THE_BLUE
Icon for Cirrostratus rankCirrostratus
Nov 01, 2021

client authintication - LTM

i'm trying to apply client authentication using certificate where the certificate is required otherwise you can't view the link . the public certificate is installed from client side and the private ...
application delivery
ASM Advanced WAF
devops
LTM
THE_BLUE's avatar
THE_BLUE
Icon for Cirrostratus rankCirrostratus
Nov 03, 2021

Dear xuwen,

thank you very much.

is there any change i have to do on SSL profile?

  • spalande's avatar
    spalande
    Icon for Nacreous rankNacreous
    Nov 03, 2021

    In clientssl profile, renegotiation should be enabled. Also, in client authentication part under Trusted Certificate Authorities select intermediate/issuer certificate of client certificate.

     

    You can also modify the iRule if requirement is to parse client cert subjectDN and allow access to it or add it as header to send it to pool member for authorization.

    • THE_BLUE's avatar
      THE_BLUE
      Icon for Cirrostratus rankCirrostratus
      Nov 04, 2021

      Renegotiation is enabled and i have test the connection using soapUI but I got an error " javax.net.ssl.SSLException: Connection reset

      is there another option to test?