Options
aFleX - Request client certificate to authenticate .
It can request authentication key when the url https://meudominio.com/LoginCert or https://meudominio.com/RegisterCert is accessed ?
Below is a sample configuration
when CLIENTSSL_CLIENTCERT {
set client_cert [SSL::cert 0]
log local0. "[X509::whole $client_cert]"
}
when HTTP_REQUEST {
if {([HTTP::uri] starts_with "/LoginCert") or ([HTTP::uri] starts_with "/RegisterCert")} {
HTTP::header insert "ssl_client_cert" [string map -nocase {\n " " \r " "} [X509::whole [SSL::cert 0]]]
}
}
The problem is that the certificate request occurs before the script when using the template . It can use Aflex template without ssl request ?
slb virtual-server VIP-PROJETO-8443 X.X.X.X
port 8443 https
name _X.X.X.X_HTTPS_8443
source-nat pool SNAT1
service-group SG-8443-TESTE
template client-ssl cssl
template server-ssl projeto-srvssl
template persist cookie COOKIE-PROJECTO
aflex aflex_cssl
slb template client-ssl cssl
cert projeto.pfx
key projeto.pfx
client-certificate Request
Below is a sample configuration
when CLIENTSSL_CLIENTCERT {
set client_cert [SSL::cert 0]
log local0. "[X509::whole $client_cert]"
}
when HTTP_REQUEST {
if {([HTTP::uri] starts_with "/LoginCert") or ([HTTP::uri] starts_with "/RegisterCert")} {
HTTP::header insert "ssl_client_cert" [string map -nocase {\n " " \r " "} [X509::whole [SSL::cert 0]]]
}
}
The problem is that the certificate request occurs before the script when using the template . It can use Aflex template without ssl request ?
slb virtual-server VIP-PROJETO-8443 X.X.X.X
port 8443 https
name _X.X.X.X_HTTPS_8443
source-nat pool SNAT1
service-group SG-8443-TESTE
template client-ssl cssl
template server-ssl projeto-srvssl
template persist cookie COOKIE-PROJECTO
aflex aflex_cssl
slb template client-ssl cssl
cert projeto.pfx
key projeto.pfx
client-certificate Request
Tagged:
0