Client Certificate Authentication - Exchange 2016 iApp

Question

I have the Exchange 2016 iApp setup and working. I want to configure client certificate authentication for OWA/ECP/ActiveSync, and possibly OA in the future. Has anyone successfully accomplished this within the iApp, or do I need to consider doing a generic SSL passthrough profile of some kind?

keesvandenbos · Answer

Do you use both LTM and APM or LTM only?
&nbsp;And should your exchange server perform the client cert authentication or the BIG-IP?&nbsp;
Cheers,&nbsp;
Kees&nbsp;

cgpearson_37419 · Answer

Just LTM is all we have. The Exchange server will need to do the client certificate authentication.&nbsp;

keesvandenbos · Answer

I would build a simple virtual server on port 443 with source address persist and no SSL off and onloading (So SSL bridging, no ssl profiles and no http profile)&nbsp;
You could use a performance layer 4 virtual server for this.&nbsp;
Cheers,&nbsp;
Kees&nbsp;

Forum Discussion

Client Certificate Authentication - Exchange 2016 iApp

Recent Discussions

Problem with lets encrypt and redirect after update

Should config via cli rather than gui?

Is a Dedicated Interface, VLAN, and Self IP Required for a VIP in an F5 Configuration?

question about getting hsl data to be formatted properly in splunk

iRule for client certificate verification and inserting CN

Related Content

APM Clientless certificate authentication

BIG-IQ Client Certificate (PKI) Authentication

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Automating ACMEv2 Certificate Management on BIG-IP

Provision IOS profile for Exchange ActiveSync with client certificate authentication

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS