I have been working on an irule for client authentication that validates the CN field and inserts certain fields from the X.509 certificates in the HTTP headers. There are numberous examples and codeshare samples (thanks everyone) that I used as a reference. I have created a rule and have it working exactly as expected for one application in production. However, I have another application in QA that I have trouble with.
One of business partners is verifying a new web service. When the developer tests using the utilities on her own machine (WebSphere as the platform) the rules works properly. the LTM requests the cert and processes as the iRule dictates. However, if she runs the test from a QA server the rule never executes the CLIENTSSL_CLIENTCERT event, and my code returns a HTTP 401 error code (as expected) b/c I never receive an SSL cert.
It is my understanding the CLIENTSSL_CLIENTCERT event is fired whenver a client certificate is requested -- whether one is provided or not. So, if that is the case can anyone think of a reason why the CLIENTSSL_CLIENTCERT event would fire for one client, but not another. Virtual Server and iRule is the same for both clients?
Any help would be appreciated