Forum Discussion

Paul_70655's avatar
Paul_70655
Icon for Nimbostratus rankNimbostratus
Feb 16, 2009

firefox does not prompt for client certificate

Hi there,

 

 

I hope this post is in the right place. Let me know if there's

 

a better place for it.

 

 

I have a new test website which has an SSL Server certificate, and the client SSL profile 'requires' a Client Certificate too.

 

(the SSL terminates on the F5, there's no SSL between the F5 and the destination web server).

 

 

Now, this works fine on IE6. The browser accepts the Server Certificate, and then it prompts the user for the Client Certificate.

 

 

However, on Firefox 3, it does not prompt for the Client Certificate.

 

 

I've included the iRule for this below, but strangely enough, it enters the CLIENTSSL_CLIENTCERT event, but the calls to [SSL::cert 0] fail because there is no certificate!

 

 

Firefox itself stops with 'Data Transfer interrupted'.

 

 

I've attached the Wireshark packet capture (in text format).

 

I note that there are some TCP CHECKSUM errors, but I'm not

 

sure why that is.

 

 

Any help would be appreciated.

 

 

regards

 

 

Paul Stuart

1 Reply

  • Hi Paul,

     

     

    Let me ask a silly question.

     

    Is the Client Cert also imported into the Firefox Browser ?

     

    Because Firefox has got its own Certificate Store, this would answer the question.

     

     

    Kind Regards

     

     

    Wiesmann