We have several webserver clusters secured with SSL and we use client certificate authentication.
Depending on the certificate, users have different rights.
At the moment we use microsoft NLB but we want to implement SSL offloading on the ACE. However, if we remove SSL from our webservers we can not use client certificate authentication anymore.
What solutions are possible to keep client certificate authentication ?
Is it possible to implement authentication on the ACE and send some header, which would include a user id to the webservers, or something like that ?