Forum Discussion
youssef1
Aug 27, 2018Cumulonimbus
Hello,
session.ssl.cert.valid to determine the success or failure of the authentication process.
Please use this irule to have the exact error then check (it will allow you to determine your problem)
http://www.openssl.org/docs/apps/verify.htmlDIAGNOSTICS)
when HTTP_REQUEST {
if {[SSL::cert count] > 0}{
if { [SSL::verify_result] == 0 }{
valid cert
} else {
Use the SSL status code in the HTTP response (defined here: http://www.openssl.org/docs/apps/verify.htmlDIAGNOSTICS)
set error_string [X509::verify_cert_error_string [SSL::verify_result]]
log local0. "AUTH-CERT-NOK error_string = $error_string"
}
}
}