Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Client SSL Authentication with 4710 CSS

Reading about the ACE XML Firewall I saw the following: "Because this forwarding occurs at Layer 4, the Cisco ACE XML Gateway has full access to the SSL client certificate. This allows the XML Gateway to perform strong authentication of the client, first by validating the certificate was signed by a trusted certificate authority, and then by querying an identity store such as Lightweight Directory Access Protocol (LDAP) to authorize that client's access to the requested services."

So my question is does the 4710 support this same type authentication where the client sends their certificate as part of the handshake? If so, how is this configured because there is no mention of it in the Cisco ACE 4700 Series Appliance SSL Configuration Guide?

1 REPLY
Bronze

Re: Client SSL Authentication with 4710 CSS

There were several bug fixed since your version of code and a few of them were related to client authentication.

I think it would be wise to first upgrade to the latest 7.50 image and if the problem persist, send us the data you have [trace, config, show ...] Check if this document helps.

http://www.cisco.com/univercd/cc/td/doc/product/webscale/css/css_720/advcggd/ssl.htm#1343966

183
Views
0
Helpful
1
Replies
CreatePlease to create content