Forum Discussion

Nimbostratus

Apr 11, 2018

BIG IP returns 401 error when there is an expired certificate and the renewed certificate of the same ca in the ca bundle

Hi, I'm just wondering if someone could help me to understand why big ip was returning a 401 error in the below scenario for incoming requests. So I had a root certificate in the ca bundle which...

MVP

Apr 14, 2018

i don't really expect the BIG-IP to return a 401 in general if a client certificate is send. or is there some iRule or ASM or such involved?

in that case it will most likely depend on your configuration. i do believe you can put what you want in a CA bundle. what i could imagine is that the expired cert is also used for advertising CA and that a client cert from that CA is offered which doesn't happen when it isn't there.

but again, in general that means connections failing, no 401, something else must be causing that.

Forum Discussion

BIG IP returns 401 error when there is an expired certificate and the renewed certificate of the same ca in the ca bundle

Recent Discussions

Disk space full - what files, folders are safe to delete?

ASM instance creation

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

Related Content

Automating ACMEv2 Certificate Management on BIG-IP

Re: Management Certificate

Automate Let's Encrypt Certificates on BIG-IP

My Security+ Certification Journey

Certifications for security professionals