Forum Discussion
Akhtar_109015
Nimbostratus
NimbostratusSHA-2 issues in client SSL profile
Hello,
I am into an issue where I apply SHA-2 certificate in the client profile the SSL session doesn't complete and webpage doesn't open. But it works fine with SHA-1 certificate. We are runnin...
ccna55_14039Nimbostratus
NimbostratusWas this ever answered?
We have the same issue with a New SHA2 Cert and IIS does not work when we have the same Sha2 cert in Client/Server SSL profile and also on the Server.
If we put the old Sha1 cert on server and use the NEW/OLD Cert sha1 or sha2 or anything else on the LTM's it will work fine, However when we use the same SHA2 cert thru-out the session this connection does not work. And yes we have Vendor engaged and at this time they also cannot figure it out. This is confirmed with Chrome/FF31
We have many other VIP's using the SHA2 cert without issue, So this one is very odd, When we do a passthru, No ssl bridging / offloading for this site all works fine and opens with the SHA2 cert.It just when we use the same cert thru-out the connection while ssl bridging the connection (Client/Server SSL profile and also on the Server) it fails. Also note in our testing it does appear the Handshake between Client/LTM seems ok, It appears to break between Server ssl profile and Webserver.
LTM Version 11.4.1 HF7 Server = Microsoft-IIS/8.5
Thanks,
ccna55