Double authentication on a URL

Hello,

The access to the functionalities of the account manager is protected according to the following approach:

Inbound flows are verified by the F5 in HTTPS / SSL authentication mode.

If the stream is signed with the secret key corresponding to the certificate that protects the domain then the certificate is extracted to be reinjected (header: X-Client-Cert) in the HTTPS stream addressed to the java application.

The application retrieves the certificate's cn and retrieves the ldap's rights using the cn to identify the correct account.

The application renders the services corresponding to the rights.

To study the possibility of avoiding the break of service, is it possible to deploy in the F5, 2 certificates at the same time which is the same but different on the following points?

expiration date

private key

secret key

serial number

...

Is it possible that the 2 coexists in the F5. when the new certificate will be used, it will be accepted without action on our part?

and how should we do ?

Thank you

BIG-IP

security

Forum Discussion

Double authentication on a URL

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

Distributed caching of authentication requests with NGINX Ingress Controller

Application Programming Interface (API) Authentication types simplified

AD Authentication and Local DB Authentication in APM

Duo Authentication Proxies

ExternalName Service and Authentication Subrequests with NGINX Ingress Controller