Wireshark · Wireshark-dev: [Wireshark-dev] not-able-to-see-client-certificate-in-capture

Wireshark-dev: [Wireshark-dev] not-able-to-see-client-certificate-in-capture

From: mahesh b <mahesh.b.2487@xxxxxxxxx>

Date: Wed, 30 Oct 2024 14:12:01 +0530

Hi,

I am trying to see the tls 1.2 handshake for mutual tls, the mutual tls handshake is success, cause i see that client application is popped up with an option to pick the client certificate it has to choose for the handshake to succeed.

But in wireshark am neither seeing "Certificate Request" sent from server to client and the client sending its "Certificate"

I also tried the suggestion mentioned here https://ask.wireshark.org/question/23327/not-able-to-see-client-certificate-in-capture/ it dint work, googling further i see another thread https://seclists.org/wireshark/2019/Jun/2 , tried the suggestions as well dint work.

Can pls someone help wat configurations am i missing ? to see the certificate request and client certificate in the tls 1.2 handshake.

I understand in tls 1.3 everything is encrypted after server hello. My question is specifically for tls 1.2 handshake.

Am using the below

Wireshark : Version 4.4.1 (v4.4.1-0-g575b2bf4746e)

Windows 11(client running here) and Windows 2022 (Server running here)

Regards,

Mahesh.B

Follow-Ups:
- [Wireshark-dev] Re: not-able-to-see-client-certificate-in-capture
  - From: mahesh b

Prev by Date: [Wireshark-dev] Re: Adding Wireshark Samples
Next by Date: [Wireshark-dev] Re: not-able-to-see-client-certificate-in-capture
Previous by thread: [Wireshark-dev] Re: Adding Wireshark Samples
Next by thread: [Wireshark-dev] Re: not-able-to-see-client-certificate-in-capture
Index(es):
- Date
- Thread