Forum Discussion
iaine
Oct 15, 2019Nacreous
Hi
The code at a simple level is
when HTTP_REQUEST {
HTTP::header insert “clientless-mode” 1
}
which will evaluate for all connecting clients. You would probably want to narrow the scope of this so that it only fires for requests from particular IPs or specific HTTP host headers for example.
Where are you requesting the Client Cert? You want to do this as part of the clientssl profile rather than in the APM policy.....as you're proxying the request in clientless mode you need all the info before the APM policy starts.