Hi,
thanks for your response.
I know that F5 loadbalancers can do this - unfortunately i use a shared
loadbalancer without the possibility to do fast changes to the
certificate revocation list.
Regards
Marc
Am 28.06.2014 19:54, schrieb Marco Pizzoli:
> Hi Marc,
> as F5 user maybe you are not
Hi Marc,
as F5 user maybe you are not yet aware that with F5, leveraging iRules, you
can:
- implement client cert verification/validation, also specifically checking
the CN of the certificate
- publish to the apache backend custom HTTP headers carrying informations
extracted from the client certifi
Hi,
On 06/26/2014 04:08 PM, andre.wen...@bmw.de wrote:
> Why do you terminate the ssl on the F5 and not on the Apache-backend? We load
> balance IP/Port-based on the F5 and terminate the SSL on the Apache backend,
> so you would be able to turn on your SSLEngine and Proxy the SSL from the F5
>
everything you want
because you have all SSL information.
Cheers,
André
-Ursprüngliche Nachricht-
Von: Eric Covener [mailto:cove...@gmail.com]
Gesendet: Donnerstag, 26. Juni 2014 00:05
An: users@httpd.apache.org
Betreff: Re: [users@httpd] Client certificate auth behind f5 loadbalancer
On
On Wed, Jun 25, 2014 at 5:53 PM, Marc Schöchlin wrote:
> in my understanding authentication using client certificates is just a
> cryptographic validation of a public/private keypair over a already
> established ssl-secured channel.
> For example, it is possible to use a official certificate for t
Hi,
in my understanding authentication using client certificates is just a
cryptographic validation of a public/private keypair over a already
established ssl-secured channel.
For example, it is possible to use a official certificate for the ssl
channel and my own ca for client certificate validat
Hi Marc,
Zitat von Marc Schöchlin :
Hello apache-users,
i'm trying to implement client certificate authentication behind a f5
loadbalancer.
My loadbalancer terminates ssl, and dispatches the decrypted
communication via network address translation to the backend apache server.
The client certif
On Wed, Jun 25, 2014 at 3:08 PM, Marc Schöchlin wrote:
> [Browser with client cert]-->[Loadbalancer with SSL
> termination]>[Apache 2.2.11]
What certificate would Apache have access to if the LB communicates to
it with HTTP?
--
Eric Covener
cove...@gmail.com
--
Hello apache-users,
i'm trying to implement client certificate authentication behind a f5
loadbalancer.
My loadbalancer terminates ssl, and dispatches the decrypted
communication via network address translation to the backend apache server.
The client certificate auth should be performed at the w
