User authentidatin via APM by prompting the user for SSL

Question

Hi,
Is there a way to actually prompt the end-user to be able to SELECT which SSL cert to use for authentication? Basically - user hits , user is prompted WHICH ssl cert to use by the F5 (user can use cert in browser OR CAC card), The F5 will take this cert and sends it over to OCSP for validation if cert is valid. If pass - continue. &nbsp;
I'm using the client ssl profile set to IGNORE and a APM policy with On-Demand Cert Auth (tried both request/require) followed by OCSP validation of the cert. &nbsp;
The user isn't prompted - it looks like F5 just looks inside the SSL browser cert storage? &nbsp;
THank you for your input. &nbsp;
&nbsp;

jkanm_258627 · Accepted Answer

OK - this now works (after we imported correct CA cert in user browser) the user is now getting prompted to select cert. I guess it looks to make sure it has valid CA signed cert first vs. just allowing user to select any cert.

Forum Discussion

User authentidatin via APM by prompting the user for SSL

1 Reply

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

F5 loadbalancer not working

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

Related Content

DEVCENTRAL END-USER LICENSE AGREEMENT

Update your DevCentral user profile

User access to servers

User roles per partition: are multiple possible?

Welcome to the F5 XC Community User Group