Forum Discussion
youssef1
Cumulonimbus
Aug 27, 2018Hello,
session.ssl.cert.valid to determine the success or failure of the authentication process.
Please use this irule to have the exact error then check (it will allow you to determine your problem)
http://www.openssl.org/docs/apps/verify.htmlDIAGNOSTICS)
when HTTP_REQUEST {
if {[SSL::cert count] > 0}{
if { [SSL::verify_result] == 0 }{
valid cert
} else {
Use the SSL status code in the HTTP response (defined here: http://www.openssl.org/docs/apps/verify.htmlDIAGNOSTICS)
set error_string [X509::verify_cert_error_string [SSL::verify_result]]
log local0. "AUTH-CERT-NOK error_string = $error_string"
}
}
}