Forum Discussion

Nimbostratus

Dec 05, 2017

Client SSL authentication with mutlipe trusted CAs and CRLs

Hello, we are using a client SSL profile with client authentication enabled. Now I need to add a second trusted CA and CRL. I created a second SSL profile with the new CA/CRL and tried to add it...

MVP

Dec 05, 2017

combine both CA certificates into one certificate bundle (just copy paste the base64 info into one file / text field)

for CRL it is more complicated you will have to merge those, which probably will require some scripting.

btw: similar question with some options was asked here: https://devcentral.f5.com/questions/crl-verification-in-irule

in the end you might consider setting up two virtual servers with different hostnames, will make your life easier for sure :)

Forum Discussion

Client SSL authentication with mutlipe trusted CAs and CRLs

Recent Discussions

AS3 Deployments (shared objects)

Inquiry on F5's Maintenance Mode Feature for Pool Members

F5Access | MacOS Sonoma

Ansible modules for F5OS

VPN fragmented IP packets dropped

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Trust your CDN, but not completely

Doing mTLS Authentication per URL

Creating device trust / trust-domain through iControl REST Call(s)

Distributed caching of authentication requests with NGINX Ingress Controller