SSL Client certificate LDAP authentication
I'd like to configure the BIG-IP LTM to authenticate some clients using LDAP authentication.
That Clients have a SSL client certificate. This certificate is made from private CA on OpenSSL.
I've tried below settings.
----------------------------------------------------
■Virtual Server
port : tcp443
SSL Profile(Client) : PRF.SSLClient
Authentication Profiles : prf.auth.ldap
■SSL Profile(Client) : PRF.SSLClient
Certificate : My server certificate
Key : My server key
Trusted Certification Authorities : root certificate of my private CA
Client Certificate : require
Certificate Chain Traversal Depth : 1
Advertised Certificate Authorities : root certificate of my private CA
■Profile Authentication : Configuration
Name : auth.ldap
Type : SSL Client Certificate LDAP
Host : My LDAP Server IP address
Search Type : User
User Base DN : ou=People,dc=f5,dc=com
User Key : uid
■Profile Authentication : Authentication
Name : prf.auth.ldap
Type : SSL Client Certificate LDAP
Parent Profile : ssl_cc_ldap
Configuration : auth.ldap
----------------------------------------------------
When I took some capture data on BIG-IP LTM, LDAP server returned correct responses (ex. result code : success(0))
So I think LDAP server seems not to causes this status. But the client HTTPS accesse returned the error page.
This error pages showed these connections reset.
Could you tell me how can I work arround this status.. ?