Client Certificate Authentication not working through LTM

Question

Hi, 
We have an application that requires client certificate authentication, if the client certificates are missing on the client system the APP falls back to basic Authentication and user gets challenged for credentials.  When the Application Servers are targeted directly we get Challenged by the Browser for Credentials as the PC didnt have the Certificates installed. However when the Servers are accessed by a VIP on a LTM, the Browser on the Client straightaway throws the following error and no Authentication Prompts. There is SSL Termination on the client side and Server side re-initiation.&nbsp;
"HTTP Error 403.16 - Forbidden
Your client certificate is either not trusted or is invalid.
". &nbsp;
Has any one encountered this issue. Any help is appreciated. Thanks in Advance.&nbsp;
Cheers
Siva&nbsp;

vitaliy_savrans · Answer

Do you have ssl termination on F5 device?&nbsp;

siva_srinivasan · Answer

Yes, there is SSL Termination.

vitaliy_savrans · Answer

What sertificate do you use in ssl server profile?

siva_srinivasan · Answer

Client SSL has a Go-daddy CA cert and the Server Side SSL uses a self signed Certificate.

vitaliy_savrans · Answer

Try, to install Go-Daddy intermediate certificate. SOL 13302&nbsp;

Forum Discussion

Client Certificate Authentication not working through LTM

7 Replies

Recent Discussions

google autenticator broken barcode

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Related Content

APM Clientless certificate authentication

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

BIG-IQ Client Certificate (PKI) Authentication

Doing mTLS Authentication per URL

Automate Let's Encrypt Certificates on BIG-IP