For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Jul 31, 2014

F5 VPN multiple certificate prompt

Hi, We are currently deploying the F5 Edge Gateway vpn solution across our user base. Part of the security is to check the SSL certificate via a internal CA. The issue is all users will ha...

application delivery

BIG-IP Access Policy Manager (APM)

Icon for Nimbostratus rank

Nimbostratus

Apr 16, 2015

I have a similiar issue, but am failing to understand how to apply to the on_demand policy macro.

The apm end point (vip) is configured with a Verisign certificate + client ssl profile. However, the on_demand certificate authority does not appear to relate to a client ssl profile.

The issue for me, is when remote clients have n+1 "user" identification certificates, and specifically on windows-7. Is there a way to 'inform' the on_demand macro which certificate to use?

Icon for Cirrostratus rank

Cirrostratus

Apr 16, 2015

on-demand will use the certificate (+crl) you define in the client SSL profile (where you should not anymore enable Request / Require)

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Academy at AppWorld 2026

DevCentral News

Introducing the F5 AI Assistant for BIG-IP

Technical Articles

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5