Forum Discussion
Kevin_Stewart
Oct 21, 2013Employee
Setting the client certificate authentication in the client SSL profile to "request" instead of "require" should work for you.
This setting should allow (client) server certificates to pass validation (ie. there is no validation), however it will also allow access without a certificate. To prevent that you may need an iRule like the following:
when CLIENTSSL_HANDSHAKE {
if { [SSL::cert count] eq 0 } {
reject
}
}