Using Clientless Mode with smartcard
I have a VIP configured with an APM policy for smartcard authentication. Users can authenticate using their smartcard with no issue, however they also want to use a software called TortoiseSVN to use same authentication process with smartcard. TortoiseSVN does not support cookies, therefore it will not be able to use MRHSession cookie for their session. From what I understand is that I should be able to use iRULE to insert the clientless-mode behavior to avoid using MRHSession cookie. No Luck!
when HTTP_REQUEST { HTTP::header insert "clientless-mode" 1 }
I tried many ways, using on-demand CERT auth and client cert inspection.
TortoiseSVN will keep requesting new sessions with 302 redirect back to /my.policy and tried again. The log showing “User need Input”. User will not get prompted for smartcard Certificate to enter their PIN number.
I was hoping maybe, we can use browser first to authenticated, and then use TortoiseSVN client to use the same session but the software client will just create another session.
Any suggestions will be much appreciated.