Forum Discussion
hooleylist
Nov 01, 2010Cirrostratus
Hi PJ,
You can configure a clientssl profile to request or require a client cert. A server ssl profile's client cert configuration is used to authenticate all serverside connections to the pool. This is independent of the clientside connection.
If the client cert validation from the clientssl profile fails the client connection will be reset. You can use an iRule to expand the error handling and send an HTTP response when the client cert validation fails. You can do more through a GUI using the APM module.
Let me know if you have any questions on any of these points.
Thanks, Aaron