Proxy SSL - Server Side HTTP

Question

Hi,&nbsp;
I have a new requirement wherein clients would use client certificates which would be validated by server.
Currently, server side is https and client side is http. I have a query -&nbsp;
Can client side be http for client certificate authentication?Do i need to do any change in client side authentication (like proxy ssl)? Clients would use symantec certificates for validation and client side certificate is digicert

hannes_rapp · Answer

Configure a secondary external listener for port 443. Whether you also bring SSL termination to BigIP or not is up to you to decide. You can make SSL-MA work with SSL-passthrough and SSL-terminate setups.&nbsp;
What you asked for is not possible. I don't see how SSL-MA over a non-SSL client-side connection can work under any circumstances.&nbsp;

Forum Discussion

Proxy SSL - Server Side HTTP

1 Reply

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

F5 loadbalancer not working

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

Related Content

Server Side Profile not show the certificate

Client-side vs Server-side Load Balancing

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

Client side to server side SNI relay iRule

Hide uri on client side