Last Modified: Dec 20, 2018
See more info
Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168, 12.1.4, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1
Opened: Aug 11, 2016
LTM does not support SSLI Client Certificate Constrained Delegation Support (C3D).
No C3D support.
ProxySSL allows a client and server to perform mutual authentication. It supports RSA key exchange only and will not work with PFS. The C3D support allows servers that require authentication of the client certificate to work. Basically, C3D performs client authentication on the client side and then forges a client certificate on the server side if server requests a client certificate. C3D is disabled by default. Enabling C3D has a performance impact.