floral flicker
We were looking into getting some certs/security related questions answered:
Our customer is currently looking an issue they have identified in their workflow where ontap doesn’t appear to be able to send certificate chain for mutual authentication and was looking into if there is any to force ontap to automatically call sslcontext.load_verifiy_locations(cafile=’mycacert.pem’) which in turns loads the CA certs as required for the client to properly validate the certificate sent by ontap?
They are ultimately looking to identify how the client would be able to validate the cert sent by ONTAP when the certificate chain is not sent for the client to complete this validation. In their existing test, they had precisely to specify not to verify the cert for the SSL handshare to success which is not what they are looking in a production deployment.
Can you provide some suggestions/information on this please?