eric_156978
Mar 30, 2015Cirrus
On-Demand Cert Auth Error Capturing
Hi,
I have an F5 terminating SSL and an access policy that uses "On-Demand Cert Auth" to get a client certificate, validate it, and authenticate it against an Active Directory server.
This works great, however, I'd like to be able capture any errors that may be occurring such as client didn't select a cert, client doesn't have any certs, client sent a bad cert, etc.
Coming from an IIS world, these would normally be handled by presenting the user with an error page and error number such as 403.7. Is this possible with an access policy? Ideally i'd like to use an irule and ship the errors out to my high speed logging pool.
Thanks!