Forum Discussion

Altostratus

Jan 14, 2019

Do I Need The Client Private Key to Setup a Two-Way SSL Handshake?

I am trying to configure a two-way SSL authentication but am getting errors stating handshake failure. I need to know if, in the client SSL profile used, whether I need to import the client private(o...

Cumulonimbus

Jan 15, 2019

In client ssl profile, you must set:

Private / public key for resource provided by the F5 (like any client SSL profile)
public key bundle of all trusted CA for client authentication

No need to include client private key... if you set this, it is not private anymore ;-)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Do I Need The Client Private Key to Setup a Two-Way SSL Handshake?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

GRE Tunnel Issue

Help with an iRule to disconnect active connections to Pool Members that are "offline"

Changes to DO and AS3 GitHub - no longer monitored

GRPC through F5 Virtual Server [RST_STREAM with error code: INTERNAL_ERROR]

Illigal Parameter addition as custom signature set wanted to Unblock

Related Content

SSL Profiles Part 1: Handshakes

TCP Internals: 3-way Handshake and Sequence Numbers Explained

F5 Cloud Failover Extension (CFE), private endpoints, and custom DNS

Using F5 Distributed Cloud private connectivity orchestration for secure multi-cloud infrastructure

Generate private key w/ CSR via iControl REST

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS