Jump to content
Welcome to our new Citrix community!

Identify Cert Client content with Pattern sets in session policy


Go to solution Solved by Marcelo Oguma de Souza,

Recommended Posts

Hi Team NetScaler,

There is an advanced session policy with the following expression that works correctly:

CLIENT.SSL.CLIENT_CERT.SUBJECT.SET_TEXT_MODE(IGNORECASE).CONTAINS("CN=agency1")

We have several 'agencies' (agency1, agency2, ...), and Pattern sets were created, 'certs_client_allow', but replacing it with the previous expression does not work:

CLIENT.SSL.CLIENT_CERT.SUBJECT.SET_TEXT_MODE(IGNORECASE).CONTAINS("certs_client_allow")

Please if anyone had a similar scenario, or NetScaler doesn't support it yet.

Thank you

---

> show policy patset certs_client_allow

    Patset: certs_client_allow

1)   Bound Pattern: CN=agency1   Index: 1

---

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...