Forum Discussion
hooleylist
Jan 24, 2011Cirrostratus
Chris, I think you're right that this wouldn't be simple.
Jon, if the servers are currently validating the client cert or credentials, why would you need to check for a client cert on LTM?
I think you either need to do all of the cert validation on LTM with a client SSL profile always enabled, or not try to do it at all on LTM. APM would probably make the cert parsing and validation a lot easier compared with an iRule. But that would require all client SSL be terminated on LTM.
Aaron