Forum Discussion

Nimbostratus

Jan 17, 2011

SSL serverside cipher mismatch

In a hardware-based 10.2(+HF2) LTM installation, LTM cannot negotiate cipher with an IIS6 server (ssldump reports a TCP close sequence after client hello). Default https monitor reports TLS...

config

design

Andrei_Popiste1

Nimbostratus

Jan 20, 2011

It was server's certificate, namely Public Key Algorithm - after regenerating the real server certificate using Microsoft RSA SChannnel Cryptographic Provider (not Microsoft Base Cryptographic Provider), SSL handshake was successful. No cipher selection in schannel was required. For restricting cipher suites on Microsoft servers, http://support.microsoft.com/kb/245030.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL serverside cipher mismatch

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

libxml2 and CVE-2024-25062

dns express reboot gtm

About Cipher Suites

f5 r5600 appliance issue with adding trunk to vlan

F5 ERR_CONNECTION_RESET

Related Content

Cipher suite mismatch advertisement/warning

SSL protocol mismatch

Serverside SNI injection iRule

Display a warning on client browser when cipher suite mismatch

Cipher Suite Practices and Pitfalls

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS