Forum Discussion

Nimbostratus

Oct 11, 2018

After terminating at the LTM to do mutual auth can you insert the client cert into the tcp header

I have a application that uses the LTM to terminate the ssl connection to check the client cert for mutual authentication to make sure it is from the company it says it is from. The app on the serve...

Employee

Oct 11, 2018

Absolutely, and it's a fairly common use case.

when HTTP_REQUEST {
    if { [SSL::cert count] > 0 } {
        HTTP::header insert "X-ENV-SSL_CLIENT_CERTIFICATE" [X509::whole [SSL::cert 0]]
    }
}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

After terminating at the LTM to do mutual auth can you insert the client cert into the tcp header

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

Big-Ip Edge Client specials characters problems

Which encyrtion algorithm is used when making Kerberos ticket encyrtion.

iControl for Gtm wideip

About F5 idle timeout and keep-alive

Problem with sending BotDefense logs to remote server

Related Content

What is Mutual TLS (mTLS)?

Verifying Slack Requests with Mutual TLS

AI Friday Episode 3: Snowstorms, Truth Terminal, MCP & AGI Insights

Security Headers Insertion

FTPS_SSL_ Termination

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS