For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Born_7758's avatar
Born_7758
Icon for Nimbostratus rankNimbostratus
Jun 22, 2011

Client Certificate Authentication

Hello Everyone,     I was given a .arm file to install on the F5 . What would be the best way to do client certificate authentication using the file I was given?          
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Jun 23, 2011
Per this page I think an arm file is:

 

 

 

http://publib.boulder.ibm.com/infocenter/tivihelp/v5r1/index.jsp?topic=%2Fcom.ibm.itim.infocenter.doc%2Fcpt%2Fcpt_ic_security_ssl_oview_ftypes.html

 

 

A file with an extension of .arm contains a base-64 encoded ASCII representation of a certificate, including its public key, but not its private key. An .arm format is generated and used by the IBM® Key Management utility. Specify this format to extract a self-signed certificate from the machine on which the self-signed certificate was generated to the machine that will use the self-signed certificate as the CA certificate.

 

 

 

I think arm is a synonym for PEM files. So you should be able to upload it via the GUI under Local Traffic >> SSL certificates.

 

 

Is is supposed to be the issuer root cert? Or something else? If it is the issuer root cert, you can specify it in the client SSL profile's trusted CA bundle and advertised CA bundle.

 

 

Aaron