Examice

Exam 301b All QuestionsBrowse all questions from this exam

Question 160

-- Exhibit

-- Exhibit --

Refer to the exhibit.

An LTM Specialist is troubleshooting an issue with SSL and is receiving the error shown when connecting to the virtual server. When connecting directly to the pool member, clients do NOT receive this message, and the application functions correctly. The LTM Specialist exports the appropriate certificate and key from the pool member and imports them into the LTM device. The LTM Specialist then creates the Client SSL profile and associates it with the virtual server.

What is the issue?

The SSL certificate and key have expired.

The SSL certificate and key do NOT match.

The client CANNOT verify the certification path.

The common name on the SSL certificate does NOT match the hostname of the site.

Correct Answer: C

The error message indicates a 'self signed certificate,' which means the client cannot validate the authenticity of the server's certificate since it is not issued by a trusted Certificate Authority (CA). Thus, the client cannot verify the certification path.

Discussion

amir43543Option: D

I think the answer is common name doesn't match because the same certificate is used in frontend and backend but gives errors on frontend only

Renan_Custodio

You are right, because if it worked directly from browser the path for validate CA, whe use VS to connect it is same

GVKDOption: C

C - Correct. The error message "verify error:num=18:self signed certificate" indicates that the client cannot validate the authenticity of the server's certificate because it is self-signed. This means the certificate is not issued by a trusted Certificate Authority (CA).

SimonR2Option: C

The given answer is correct due to it being a self signed certificate. External clients cannot verify its authenticity however internal servers can.