SSL Profiles Part 9: Server Authentication

This is the ninth article in a series of Tech Tips that highlight SSL Profiles on the BIG-IP LTM.  SSL Overview and Handshake SSL Certificates Certificate Chain Implementation Cipher Suites...
Updated Mar 25, 2023
Version 2.0
LTM
security
series-the-ssl-profile
ssl
tech tip
Frank_30530's avatar
Frank_30530
Icon for Altocumulus rankAltocumulus
Mar 17, 2014
It seems that SSL::verify_result always returns 0 (OK). Even if I 'ignore' the

 

'Untrusted Certificate Response Control' and send an invalid certificate.

 

In that case, the connection is allowed (because I ignore the trust check),

 

but I would have expected a non-zero SSL::verify_result code, though...

 

Any comments?