For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Stephen_Archer_'s avatar
Stephen_Archer_
Historic F5 Account
Apr 28, 2008

CLIENTSSL_HANDSHAKE event not triggered...?

I'm trying to create an iRule to authenticate user requests using SSL auth, but only when a specific URI is used. The iRule posted below is a simplified version of my 'full' iRule - and I get the sam...
application delivery
dev
devops
iRules
Stephen_Archer_'s avatar
Stephen_Archer_
Historic F5 Account
May 15, 2008
Hi Colin, I've tried your suggestion, and moved forward somewhat now. The problem I'm now having is that if I set the ClientSSL Profile to 'request' or 'require' client cert, it works for the 'secure' URI's. However, it also requests a cert for the 'insecure' URI's - but we do not want 'insecure' users prompted for a cert at all. If I set the ClientSSL Profile to 'ignore' then neither the 'secure' URI's or the 'insecure' URI's work.

 

 

Any ideas? (thanks for your help with this - it's much appreciated)