chris_nelson_11
Oct 04, 2011Nimbostratus
client cert format(s)
long time lerker, first time poster (ish),
anyway down to business..what client cert format should i be using to auth an interactive browser ssl session?
ive been busy labbibg this and attempted to use a pfx/pkcs12 cert/private key i generated and converted on the F5 (using the associated openssl commands). imports into host cert store no problems along with F5 default crt file.advertise the default ca to the client and the browser allows me to select the correct cert. added an iRule to log the cert subject and thumbprint (which is working as expected) but shes not working (i cannot see any clear backend connection when i tcp dump the connection ).
Should i be using a different cert format? ran an ssl dump and only had limited insight :-)
cheers,chris