Forum Discussion

Nimbostratus

Feb 28, 2021

Proxy SSL and rejecting unwanted Client Authentication

Morning I have a server configure for mTLS and I would like to be able to inspect the Client Certificate presented and reject if some criteria matches, preferably via Proxy SSL. However from w...

Employee

Mar 01, 2021

The method for passing through Client Certificates to the backend server is called C3D https://support.f5.com/csp/article/K14065425

NIrving

Nimbostratus

Mar 02, 2021

Thanks Pete. I discovered this last night and manages to get it working in my lab. It's not ideal as it rewrites certificates and I need to work out if it can pass through our extension requirements, but it is looking promising. Once I figure out how to upvote will make this the answer and thanks for your time in replying

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)