I generated CSRs using the web gui to send to our CA, to replace new device certs. The new certs came back without the client-auth Extended Key Usage attribute set. The documentation is quite clear...
buulam
Admin
AdminHey RobM , after some digging, we determined this has not been filed as a Request for Enhancement yet. This is a great use case, though and we could take this further by having a Request for Enhancement to track this. This process would involve opening a case with F5 Support and asking for an "RFE" and providing a description of the enhancement and the use case it addresses.
Before that, if you haven't already, I would suggest speaking with the F5 Solutions Engineer for your account. They'll be familiar with the RFE process and can help with properly filing it.
If you're unfamiliar with who your F5 Solutions Engineer is for your account, please PM me and I can help you track them down.
Thanks,
Buu