Forum Discussion

Nimbostratus

Jul 14, 2009

CAC authentication and http headers

Hello everyone, I am trying to get a CAC authentication irule working properly and have run into a glitch. The initial pass through the rule identifies the folder and requires a CAC fo...

Cirrostratus

Jul 17, 2009

Hi Mike,

If you want to send back an HTTP response even if the client doesn't present a cert when prompted, I think you'll need to set the cert mode to request when you call SSL::renogiate. Else, the client SSL profile might trigger a RST to the client if no cert is provided.

Can you add the client IP and port to the log statements and then post the example iRule with the log statements included to correlate the iRule code with the logging? Also, f you wrap the iRule text in [ code ] [/ code ] tags (without the spaces), the spacing of the rule will be preserved.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

CAC authentication and http headers

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

rSeries 4600 additional Core Enable

How are memory and disk allocated to different modules on bigip appliance?

BIG-IP methods to Fix the “421 Misdirected Request” Error

How to nexthop all requests from VPN clients?

Can someone confirm F5-CA production and F5-CA Beta blueprint both are same?

Related Content

(HTTP) Redirection via Arbitrary Host Header

Log Http Headers

F5 HTTPS Redirect 2025

F5 XC Distributed Cloud HTTP Header manipulations and matching of the client ip/user HTTP headers

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS