For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

youssef1's avatar
youssef1
Icon for Cumulonimbus rankCumulonimbus
Dec 11, 2018

Hi,

 

Nicolas is right, if you set correctly your ssl client profile.

 

In particular "Advertised Certificate Authorities" you must not have this behavior. unless you have several certificates signed by the same CA on clientside...

 

If you have only one cert installed on client side and you set "Advertised Certificate Authorities" with right CA it will be transparent for IE and Chrome (but I noticed that safari asked to select the certificate despite the fact that there was only one)...

 

Regards

 

The-messenger's avatar
The-messenger
Icon for Cirrostratus rankCirrostratus
Oct 23, 2019

I've been working on this solution as well. I have client cert inspection working in APM, with cert auth configured in an SSL profile. This works as expected with ActiveSync and the iOS mail client but with any browser I try on a mobile device, a prompt/selection of the cert is required. If the browser doesn't prompt, or the user doesn't select it access fails. youssef, what is required to make this transparent?