Client Certificate Validity

Question

Hi,&nbsp;
&nbsp;I had configured F5 to insert SSL Client Certiificate in HTTP Headers that mentioned in http://devcentral.f5.com/Default.aspx?tabid=53&amp;forumid=5&amp;view=topic&amp;postid=13667. &nbsp;
&nbsp;Now I would like to add a Certificate Validity/Revocation check before inserting certificate into HTTP Headers. I don't want to insert certificate in http headers if it is expired or revoked by CA. Does anyone know how to do that check using CA CRL?&nbsp;&nbsp;
&nbsp;Thanks in advance
&nbsp;--
&nbsp;Bhargav

bhargav_9588 · Answer

Help Please!!!

joe_hagan_47074 · Answer

Check out this sample&nbsp;
&nbsp;http://devcentral.f5.com/wiki/default.aspx/iRules/InsertCertInServerHeaders.html&nbsp;
&nbsp;The only question I have is how is the SSL session maintained.  Is it suppose to end if the client closes the browser?

bhargav_9588 · Answer

Thanks a lot. It worked.&nbsp;
&nbsp;For your question, Yes it should end the session when client closes the browser.&nbsp;
&nbsp;Currently, I set the timeout to 180.&nbsp;
&nbsp;Thanks,
&nbsp;Bhargav

Forum Discussion

Client Certificate Validity

Recent Discussions

Can i apply ddos profile on virtual server using port range

I used the wrong email account when take Application Delivery Exam (101)

F5 iControl REST API - viewBy Parameter Issue in Analytics Report

'F5 rules for AWS WAF' ruleset not working for jsp web shell attack

Disable ssl or https for the embed url

Related Content

POC: Validate JWT with iRule

BIG-IQ Client Certificate (PKI) Authentication

Help F5 Transform the BIG-IP Administrator Certification

Validate Certificate Common Name and Revocation Status

Re: Management Certificate

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS