Forum Discussion

Nimbostratus

Apr 03, 2017

Server SSL profile cert authentication behavior

I would like to know the relationship between following 3 items under Server authentication in Server SSL profile: 1> Server Certificate: ignore or require 2>Expire Certificate Response Con...

Cirrocumulus

Apr 03, 2017

1> Server Certificate: ignore or require

Same as in the client ssl profile, requires/ignores the other device to certificate.

2>Expire Certificate Response Control: ignore or drop

If ignore, it will allow connections with expired certificate. If drop, will drop the connection.

3> Untrusted Certificate Response Control: ignore or drop

Same as above, but in case the certificate was not signed by a trusted CA.

If you select ignore for server certificate, does not matter if the certificate has expired or is not trusted, the connection will not fail because certificate.

Forum Discussion

Server SSL profile cert authentication behavior

Recent Discussions

Big-iq 8.2 questions

Cookie Persistence configured on VS but no logs

How to backup automation Which BIG IP already integration to BIG IQ CM

[APM] - Error: failed to reset strict operations; disconnecting from mcpd

What is the use of epsec-package file in APM ?

Related Content

Behavior of outbound DNS query from LTM behavior

LTM Authentication Profiles EOL?

Distributed caching of authentication requests with NGINX Ingress Controller

HA Cluster behavior on AWS

Understanding the Authenticate Name Option on Server SSL profile on BIG-IP