eric_haupt1
Apr 10, 2019Nimbostratus
APM On-Demand Cert Auth failure even though cert exists and is valid
I have a multi-path VPE. The first path is for automated systems which are detected based on client ip and take a branch using that logic. I know this path is working because I already have systems using it. I have the clientssl profile set to "ignore" with the trusted and advertised CA set to my agency bundle. Within the VPE I have an On-Demand Cert Auth immediately following. I have a remote host that is successfully matching the client IP branch and hitting the subsequent cert auth - but failing. APM logs clearly show session.ssl.cert.exist=0 and session.ssl.cert.valid=1.
Why would this host fail the On-demand auth but yet these variables are set in such a fashion? Any ideas?