CA Profile and Machine Cert Authentication
Hi guys,
We are trying to configure a CA profile and subsequently making use of Machine Cert Authentication on an APM profile. So far we have done the following:
Our certificates are currently issued from an internal CA and the Root and the Issuer CA are the same server. We have exported the Root Certificate and imported it into the F5 appliance. Then we have created an SSL Profile for the Certificate authority (Our_Root_CA).
Afterwards we assigned a Machine Cert Auth with the following configuration:
Certificate Store Name: MY
Certificate Store Location: CurrentUser
CA Profile: /Common/Our_Root_CA
OSCP Responder: None
Save Certificate in Session Variable: Disabled
Allow User Account Control right elevation prompts: No
Match subject CN with FQDN: No
Match subject Alt Name with FQDN: empty
Match Issuer: empty
Match Serial Number: empty
However every time we try to authenticate the certificate, APM is returning "Session variable 'session.check_machinecert.last.result' set to '-2'"
Can you please help me out?