For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Emad's avatar
Emad
Icon for Cirrostratus rankCirrostratus
May 20, 2014

SSL Handshake

How one can implement two way SSL or Mutual SSL. I have seen some topics/questions for it on DC but not able to find any final verdict.  
application delivery
deployment
LTM
nitass's avatar
nitass
Icon for Employee rankEmployee
May 26, 2014

Its CA Root certificate which i need to validate client cert

 

ca certificate (i.e. certificate which signed certificate client sends) has to be configured in clientssl profile (i.e. trusted certificate authorities setting).

 

This CA Root certificate is not trusted because it is not in the Trusted Root Certification authorities store.

 

if this is an error showing on browser, the problem is on certificate bigip sends (i.e. not certificate client sends to bigip). it means the certificate is signed by ca certificate which is not stored in trusted root certificate authorities on client.