Forum Discussion

Altostratus

Mar 25, 2021

Bypass certificate check

Is there any way that checking the certificate details could be bypassed in specific cases (e.g. a particular client/IP Address, particular URLs/domains) when using SWG as a Forward Proxy? We a...

Nikoolayy1
Mar 26, 2021
Have you checked if the SSL server profile options are set to ignore under "Server Authentication settings"?

https://support.f5.com/csp/article/K14806

Nikoolayy1

MVP

Mar 26, 2021

Have you checked if the SSL server profile options are set to ignore under "Server Authentication settings"?

https://support.f5.com/csp/article/K14806

GBurch
Altostratus
Mar 26, 2021
OK, so "Untrusted Certificate Response Control" is set to Ignore already, so I guess there isn't a problem here.

I was sure we were filtering out invalid certificates at that level. I guess I should have checked first.

Thanks for your help

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Bypass certificate check

Recent Discussions

BIG-IP SysLog appearing in ossec.log

MAC address of deleted VS IP address still responsive

Different common name ssl acces 403 forbiddent

TMSH Command to list ASM policies not attached to any virtual servers in all partitions

dynamic signature detection

Related Content

Re: Management Certificate

Certifications for security professionals

Certificate Expiry Email alert configuration

LTM Certificate expire

MSM Bypass

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS