Forum Discussion

Nimbostratus

Aug 13, 2013

APM CRL checking

Hello. I'm working with APM and using On-demand client certificate auth with policy type - request, because i want to have fallback rule in case of certificate validation failure. So, accor...

BIG-IP Access Policy Manager (APM)

Employee

Aug 14, 2013

Nice work Nash.

To answer your last question, scorpa, the APM on-Demand Cert Auth agent will read the CRL from the client SSL profile, so you can definitely set the client SSL profile to "ignore".

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

APM CRL checking

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

BIG-IP security hardening and compliance checks

Building an OpenSSL Certificate Authority - Configuring CRL and OCSP

Check a Virtual Server's SSL Status

Check Client for APM Browser Components

snmp-check external monitor

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS