Forum Discussion

Altocumulus

Oct 19, 2022

Solved

C3D first request problem

Hi all, We have an application that has a login button and when you press it you can login with a certificate. This is working perfectly fine. We have put in front of the app a virtual server with ...

C3D

security

Manuel_

Oct 20, 2022

With the iRule like this the error does not occur:

when CLIENTSSL_HANDSHAKE {
  if { [SSL::cert count] != 0 } {
    HTTP::release
  }
}

when HTTP_REQUEST {
    # Some tests to determine if IS_LOGIN_PAGE
    if { IS_LOGIN_PAGE }{
        HTTP::collect
        SSL::session invalidate
        SSL::authenticate always
        SSL::authenticate depth 9
        SSL::cert mode request
        SSL::renegotiate
    }
}

The only problem I've seen happens if the user cancels the select certificate dialog in the browser but that doesn't worry us a lot.

mihaic

MVP

try to remove :

  SSL::session invalidate

Manuel_

Altocumulus

Oct 20, 2022

Thanks for the reply but unfortunatly same thing happens.

Forum Discussion

C3D first request problem

Recent Discussions

Disk space full - what files, folders are safe to delete?

ASM instance creation

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

Related Content

Distributed caching of authentication requests with NGINX Ingress Controller

Logging DNS Requests

Source_Addr Persistence Problems

Using Client Subnet in DNS Requests

F5 AWAF - bypass request based on the pressence of a request header - value