User authentidatin via APM by prompting the user for SSL

Question

Hi,
Is there a way to actually prompt the end-user to be able to SELECT which SSL cert to use for authentication? Basically - user hits , user is prompted WHICH ssl cert to use by the F5 (user can use cert in browser OR CAC card), The F5 will take this cert and sends it over to OCSP for validation if cert is valid. If pass - continue. &nbsp;
I'm using the client ssl profile set to IGNORE and a APM policy with On-Demand Cert Auth (tried both request/require) followed by OCSP validation of the cert. &nbsp;
The user isn't prompted - it looks like F5 just looks inside the SSL browser cert storage? &nbsp;
THank you for your input. &nbsp;
&nbsp;

jkanm_258627 · Accepted Answer

OK - this now works (after we imported correct CA cert in user browser) the user is now getting prompted to select cert. I guess it looks to make sure it has valid CA signed cert first vs. just allowing user to select any cert.

Forum Discussion

User authentidatin via APM by prompting the user for SSL

Recent Discussions

MAC address of deleted VS IP address still responsive

Different common name ssl acces 403 forbiddent

dynamic signature detection

DNS HM Probe issue

F5 looses the token for the first call

Related Content

DEVCENTRAL END-USER LICENSE AGREEMENT

Update your DevCentral user profile

User access to servers

Welcome to the F5 XC Community User Group

Traffic Management User Interface Vulnerability: The Fix and Temporary Mitigation Options

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS