Home > Configuration > SSL > setsslservice_clientauth

setsslservice_clientauth

Use this method to set state of client authentication. In service-based SSL offload, the service terminates the SSL handshake if the SSL client does not provide a valid certificate.
This parameter is not applicable when configuring a backend service.

Syntax



Parameters

servicename

Name of the SSL service.
This is mandatory parameter.

clientauth

State of client authentication. In service-based SSL offload, the service terminates the SSL handshake if the SSL client does not provide a valid certificate. This parameter is not applicable when configuring a backend service.
Default value = DISABLED.
Possible Values : ENABLED, DISABLED.

clientcert

Type of client authentication. If this parameter is set to MANDATORY, the appliance terminates the SSL handshake if the SSL client does not provide a valid certificate. With the OPTIONAL setting, the appliance requests a certificate from the SSL clients but proceeds with the SSL transaction even if the client presents an invalid certificate. This parameter is not applicable when configuring a backend SSL service. Caution: Define proper access control policies before changing this setting to Optional.
Possible Values : Mandatory, Optional.

Return Value

Returns simpleResult

See Also


bindsslservice_cacertbundle

bindsslservice_certkey

bindsslservice_cipher

bindsslservice_ecccurve

bindsslservice_policy

getsslservice

setsslservice_cipherredirect

setsslservice_common

setsslservice_dh

setsslservice_dhcount

setsslservice_dhkeyexpsizelimit

setsslservice_dtls1

setsslservice_dtls12

setsslservice_dtlsprofile

setsslservice_ersa

setsslservice_ocspstapling

setsslservice_pushenctrigger

setsslservice_redirectportrewrite

setsslservice_sendclosenotify

setsslservice_serverauth

setsslservice_sessreuse

setsslservice_snienable

setsslservice_ssl2

setsslservice_ssl3

setsslservice_sslclientlogs

setsslservice_sslprofile

setsslservice_sslredirect

setsslservice_sslv2redirect

setsslservice_strictsigdigestcheck

setsslservice_tls1

setsslservice_tls11

setsslservice_tls12

setsslservice_tls13

unbindsslservice_cacertbundle

unbindsslservice_certkey

unbindsslservice_cipher

unbindsslservice_ecccurve

unbindsslservice_policy

unsetsslservice_cipherredirect

unsetsslservice_cipherurl

unsetsslservice_clientauth

unsetsslservice_clientcert

unsetsslservice_common

unsetsslservice_dh

unsetsslservice_dhcount

unsetsslservice_dhfile

unsetsslservice_dhkeyexpsizelimit

unsetsslservice_dtls1

unsetsslservice_dtls12

unsetsslservice_dtlsprofile

unsetsslservice_ersa

unsetsslservice_ersacount

unsetsslservice_ocspstapling

unsetsslservice_redirectportrewrite

unsetsslservice_sendclosenotify

unsetsslservice_serverauth

unsetsslservice_sessreuse

unsetsslservice_sesstimeout

unsetsslservice_snienable

unsetsslservice_ssl2

unsetsslservice_ssl3

unsetsslservice_sslclientlogs

unsetsslservice_sslprofile

unsetsslservice_sslredirect

unsetsslservice_sslv2redirect

unsetsslservice_sslv2url

unsetsslservice_strictsigdigestcheck

unsetsslservice_tls1

unsetsslservice_tls11

unsetsslservice_tls12

unsetsslservice_tls13