Forum Discussion

Spidey_29396's avatar
Spidey_29396
Icon for Nimbostratus rankNimbostratus
Feb 27, 2014

How to deploy client authentication(require) using F5's self-signed certificate

Hi All,   Is there any deployment guide using client authentication require. whenever i try to change the Client Certificate option to require, it doesn't work but if change to auto,request and no...
application delivery
availability
deployment
design
LTM
TMOS
Rafa_Ayala's avatar
Rafa_Ayala
Icon for Nimbostratus rankNimbostratus
May 29, 2015

Thank you ,

 

Configure again and these are my results:

 

Debug SSL :

 

May 27 13:26:42 asm03 debug tmm1[14565]: 01260006:7: Peer cert verify error: self signed certificate (depth 0; cert /C=MX/ST=DISTRITO FEDERAL/L=CIUDAD DE MEXICO/O=Servicios C.V/OU=Sitemas/CN=wit.com.mx/emailAddress=xxxxxx) May 27 13:26:42 asm03 debug tmm1[14565]: 01260009:7: Connection error: ssl_shim_vfycerterr:3580: self signed certificate (48) May 27 13:26:42 asm03 info tmm1[14565]: 01260013:6: SSL Handshake failed for TCP x.x.x.x:57862 -> x.x.x.x:8120

 

send costumer the certificates:

 

remote device:

 

client1.p12

 

F5 ASM:

 

set in: client authentication clientCA.crt and clientCA.key