I am trying to do "on-demand certificate auth" and that is the only thing the APM is doing.
The authentication itself is working but the variables are all messed up. The multiline variable only show first line.
Log Message/Common/cert-auth-upn:Common:d6b047be: Session variable 'session.ssl.cert.whole' set to '-----BEGIN CERTIFICATE-----'PartitionCommon
Log Message/Common/cert-auth-upn:Common:d6b047be: Session variable 'session.ssl.cert.x509extension' set to 'X509v3 extensions:'PartitionCommon
I am getting same results from ver 12.0 and ver 12.1.1 HF2.
AM i doing something wrong here?
is that in the logging only or also when you access the full session variable from the GUI?
Both. Logs as well as session variables show same values making it impossible to do any operation on the data. I extracted the same data with an irule and that shows perfect values. But i dont want to use irule for inbuilt function of APM
Did you uncheck "retain certificate" in clientssl profile? (Default value is checked to retain certificate for apm)
The "Retain Certificate" setting is at default (checked).