Hi Jeremy, This was added in the 6.0 (TS-3608). Whenever proxy.config.ssl.client.verify.server is turned on the request hostname is matched against the origin server cert CN/SAN fields.
Cheers, Uri On Tue, 22 Sep 2015 10:02:49 -0500 Jeremy Payne <[email protected]> wrote: > In testing TLS connections to my origin complex, I noticed that ATS > does not validate the origin hostname against the server certificate > CN/SAN values. ...
