Forum Discussion

Nimbostratus

Jul 25, 2014

SSL Handshake error due to Enhanced key usage of client certificate

Hi, client system: SAP ECC system connection type: RFC - type -G (HTTPS) Target system : F5 Load balancer and finally --> SAp Netweaver system. The SSL is termiated at loadbalancer. The target...

application delivery

BIG-IP Access Policy Manager (APM)

Employee

Jul 25, 2014

The extra EKU attributes shouldn't matter at all. In fact I just tested a client cert with these two values and it worked on my 11.5 lab system. I would suggest performing a client side ssldump and observe the SSL handshake for any errors:

ssldump -k [path to private key] -AdNn -i 0.0 port 443 [and and additional filters]

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

announcement

Appworld2026

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL Handshake error due to Enhanced key usage of client certificate

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Failing over Virtual F5 VE to DR location using Zerto

Failing over of a Virtual F5 configuration to another location using Zerto restore process

F5 Networks F5CAB1 Exam - Need Help Regarding Prep

Username is not filled in EdgeClient in the Modern customization

The GSLB pool is providing an incorrect IP to end users

Related Content

Automating Certificate Management on F5 BIG-IP

Scale, Enhance, and Evolve BIG-IP Administration-Getting Started

Enhanced Modern Applications and MicroServices SSO with NGINX

Certificate Automation for BIG-IP using CyberArk Certificate Manager, Self-Hosted

Automating ACMEv2 Certificate Management on BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS