cslacker_318492
May 08, 2017Nimbostratus
Client Certificate and Mutual TLS
I'm trying to understand whether or not the BIG-IP can handle mutual auth. To be specific, I'm not interested in SSL offload, etc. I'd like for the BIG-IP to create back-to-back SSL sessions. The BIG-IP client side would use a CA-trusted cert.
Can such a thing be configured? Can the BIG-IP client-ssl profile function as a full SSL client? As I understand it, this would be required in order for the Handshake Protocol: Certificate Verify messages to be accepted through the duration of the SSL session setup.
Thanks in advance!