Forum Discussion
Vinit_Ajgaonkar
May 08, 2019Nimbostratus
Hi Atoth,
Modifying the client authentication in the SSL profile can allow for the VIP to be configured as both 1-way and 2-way.
However from a security standpoint it kind of nullifies the Cert based authentication becuase even users who dont pass the auth check can get through.
Client authentication options in ClientSSL profile are as below: 1. Require(Strict and requires client cert authentication) 2. Request(Not strict for client cert authentication for the ssl session to be established) 3. Ignore(Default)
Regards, Vinit