Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Icon for Altostratus rank

Altostratus

5 years ago

Solved

Bypass certificate check

Is there any way that checking the certificate details could be bypassed in specific cases (e.g. a particular client/IP Address, particular URLs/domains) when using SWG as a Forward Proxy? We a...

Secure Web Gateway

Nikoolayy1
5 years ago
Have you checked if the SSL server profile options are set to ignore under "Server Authentication settings"?

https://support.f5.com/csp/article/K14806

Icon for MVP rank

MVP

5 years ago

Have you checked if the SSL server profile options are set to ignore under "Server Authentication settings"?

https://support.f5.com/csp/article/K14806

Icon for Altostratus rank

Altostratus

5 years ago

OK, so "Untrusted Certificate Response Control" is set to Ignore already, so I guess there isn't a problem here.

I was sure we were filtering out invalid certificates at that level. I guess I should have checked first.

Thanks for your help

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5