Client Certificates

user45119 · July 30, 2024, 7:52am

What is the name of the domain?

.

What is the issue you’re encountering

Block traffic from devices that do not have a valid client SSL/TLS certificate

What steps have you taken to resolve the issue?

first i try to Block traffic from devices that do not have a valid client SSL/TLS certificate to our API by using
Client Certificates
my step :

I create Client Certificates
add my sub domain to enable mTLS
create Custom rules mTLS-enforced authentication
(http.host eq “my-domin.com” and not cf.tls_client_auth.cert_verified)

the issue is no block happen at all

sjr · July 30, 2024, 8:58am

Your rule only refers to your apex domain, not your subdomain.

Otherwise can you give your real subdomain and domain and show a screenshot of your rule.

system · August 14, 2024, 8:59am

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Mtls client certificate not working, keep ketting "blocked" at the client Security	1	261	May 9, 2024
WAF rule to require client TLS auth for non-whitelisted IPs Security	1	29	August 9, 2024
Question about client certificates Security	11	69	January 8, 2025
API for client certificates Security	8	3195	August 27, 2022
mTLS rules not blocking unauthenticated request Security	1	811	September 17, 2023

Client Certificates

What is the name of the domain?

What is the issue you’re encountering

What steps have you taken to resolve the issue?

Related topics