Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    HAProxy Client Certificate authentication stops working after a while

    Scheduled Pinned Locked Moved
    Cache/Proxy
    1
    3
    465
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sensewolf
      last edited by

      Hi,

      So I have managed to setup client certificate authentication with HAProxy in pfSense. When I browse to a protected site, my browser asks me for the certificate (and suggests the (only) installed one). After presenting the certificate to the site (HAProxy), the site is displayed in my browser. So far so good.

      However, I have noticed that after about a day this does no longer work. When I present the certificate to the site (HAProxy), it is rejected ("bad cert").

      Now, when I restart HAProxy from the GUI, it immediately works again. So it seems that somethings stops working in HAProxy after some time.

      Has anyone encountered this before? Is there a solution (other than restarting HAProxy daily)?

      (I'm on the most recent version of pfSense (2.7) and haproxy is version 0.61_11)

      Thanks!

      S 1 Reply Last reply Reply Quote 0
      • S
        sensewolf @sensewolf
        last edited by

        Well, I am mitigating this issue by restarting HAProxy once every day.

        If anyone knows how to actually resolve the problem, I am all ears.

        Thanks!

        1 Reply Last reply Reply Quote 0
        • S
          sensewolf
          last edited by

          Still noone?

          1 Reply Last reply Reply Quote 0
          • First post
            Last post