Emad
May 20, 2014Cirrostratus
SSL Handshake
How one can implement two way SSL or Mutual SSL. I have seen some topics/questions for it on DC but not able to find any final verdict.
Its CA Root certificate which i need to validate client cert
ca certificate (i.e. certificate which signed certificate client sends) has to be configured in clientssl profile (i.e. trusted certificate authorities setting).
This CA Root certificate is not trusted because it is not in the Trusted Root Certification authorities store.
if this is an error showing on browser, the problem is on certificate bigip sends (i.e. not certificate client sends to bigip). it means the certificate is signed by ca certificate which is not stored in trusted root certificate authorities on client.