DoD CAC authentication using IIS through LTM
I am working with developers and SA people to get an app that uses IIS authentication with LTM.
Basic setup is a virtual server on 443 with a cert on the front end, two servers on the back end being load balanced and running SSL/TLS as well. We want to be able to authenticate the users using the cert on the CAC. The app looks at fields in the CAC cert, specifically the CN.
If we put the app on a FastL4 server the authentication works however we don't have persistence and that causes timeouts and other problems.
I have tried everything I can think of and this just refuses to work. I don't have a ton of experience with CACs so I am sure I am missing something.
Any help is appreciated.
US Army Human Resources Command
Fort Knox, KY