-- Exhibit
-- Exhibit --
Refer to the exhibit.
An LTM Specialist has created a virtual server to load balance traffic to a pool of HTTPS servers. The servers use client certificates for user authentication. The virtual server has clientssl, serverssl, and http profiles enabled. Clients are unable to connect to the application through the virtual server. Clients are able to connect to the application servers directly.
What is the root cause of the problem?
The issue lies in the fact that the LTM device does not trust the issuing Certificate Authority (CA) of the client certificate. The error occurs immediately after the client sends its certificate, indicating that the LTM device is likely unable to verify the client’s certificate against a trusted CA. To resolve this issue, the LTM device must be configured to trust the CA that issued the client's certificate. Enabling the clientssl profile to require a client certificate will not solve the issue as the LTM still needs to trust the issuing CA. Therefore, the correct answer is that the LTM device does not trust the issuing CA of the client certificate.
how come it's going to SSL offload since it hat serverssl profile and HTTPS pool. It should be C
it's C!!! come on!!
It throws an error as soon as the client sends its certificate. This is an open and shut question far as I’m concerned! Answer is C!
C - Correct Fatal error after client sends certificate.