Symptoms ... After the client certificate has been provided, the browser waits for a response within a few minutes and then displays the error 'Page cannot be displayed'. ... At the same time you can watch the following informational messages in the /var/log/apm events log file: info tmm[12245]: 01870000:6: /Common/app1.example.com:Common:dd1d4e4f: Executed agent (/Common/app1.example.com_On-Demand-CRLDP_ondemand_cert_auth_act_ondemand_cert_auth_ag) with return status (Need more data) ... On-Demand Certificate Authentication fail, even if a trusted client certificate is provided. ... Conditions ... BIG-IP system is configured as Identity Aware Application Proxy for multiple application access, that may require On-Demand Client Certificate Authentication by using different Client SSL profiles. ... specified. -- Client SSL profile for app1.example.com application has 'Default for SNI' option enabled. ... In this case, all authentication requests to app2.example.com fail, even if a tru...