I have an environment with SSL termination and client authentication with a client certificate. Now, the backend server application needs to be informed of the client DN information present in the presented client certificate. Is it possible to tell the ACE to send specific client certificate fields to the backen server via insertion of an HTTP header or, to forward the entire client certificate in any way to the backend server ?
Thank you for any comment,
This can be done using ACE Module version 3.0 onwards:
host1/Admin(config-actlist-modify)# ssl header-insert client-cert Subject
More information is in the "SSL Configuration Guide".