This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Pass client certificates through WAF? CAC?

Is it possible to pass client certificates through the WAF such as for CAC authentication? Is CAC implementation possible through the WAF? Or does there need to be a DNAT with a separate WAF solution installed directly on server itself?

This thread was automatically locked due to age.

0 BAlfson over 9 years ago

If you're talking about a client presenting a known-good certificate accepted by the server behind the UTM, a DNAT is the only solution today. You might want to vote for Web Server Protection: Certificate-based Authentication.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 JBooks over 9 years ago

Thanks for the straightforward answer.
Cancel
Vote Up 0 Vote Down

Cancel