Forum Discussion
pmilot
Feb 14, 2014Altostratus
I've been working with Warren on this issue.
The fail occurs during the SSL Handshake. When we perform a TCP dump, we see the following.
Client Hello Server Hello Cipher suites negotiated Change cipher spec Change cipher spec
Than the F5 closes the connection (RST,ACK) and ltm logs show "SSL Handshake Failed". The client never gets to the point of attempting to bind to the directory.
We have reproduced this from various clients. The client SSL profile is currently set to the default with a cert/key. The certificate contains the vip FQDN in the CN= field and SubjectAltName. Virtual Server is of type "standard". Pretty basic really.
The Directories are Microsoft ADS.
Thanks