For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Alex_McShane_23's avatar
Alex_McShane_23
Icon for Nimbostratus rankNimbostratus
Nov 09, 2017

Authentication & Encryption between BIG-IP VS and application server

Hi -   I would be grateful for clarity with regard to the following.   I have a requirement to not only enable Authentication and Encryption between the User/Client and BIG-IP, but additional...
application delivery
BIG-IP
Jad_Tabbara__J1's avatar
Jad_Tabbara__J1
Icon for Cirrostratus rankCirrostratus
Nov 09, 2017

Hello Alex,

 

You only need to add an SSL Client Profile and an SSL Server Profile. With the Client Profile the VS will be ready to handle encrypted tunnel between the Client and the VS. In the same manner, by adding an Server Profile, the F5 will starts a secure handshake to establish an encrypted tunnel btw the F5 and the Application Server.

 

By inheriting from the client-ssl / server-ssl parent profile, the config. is ready to use no need to add anything except the trusted key, cert and chain files to the system.

 

Hope it is clear.

 

Regards