Josh_Abaire
Jun 07, 2012Nimbostratus
SSL Client Auth
I'm having trouble getting SSL Client Authentication to work, I've never done it before. The customer wants partners to obtain their own SSL certs from whatever authority they choose, then have the root and trust chain installed on the F5. A GoDaddy Root and Intermediate cert were provided to me. I wasn't sure how to make multiple certs trusted so I imported them separately with one named bundle and then combined them:
cat /config/ssl/ssl.crt/godaddy-root.crt >> /config/ssl/ssl.crt/godaddy-bundle.crt
Configured the client SSL profile to require client certs with the godaddy-bundle as trusted authority and advertised authority. As you may guess, it didn't work. This is new territory for me. Can someone explain how the client cert is to be trusted and what I did wrong?