Forum Discussion

Nimbostratus

Apr 17, 2018

CRLDP Authentication Profile

Hi, anyone knows how i can configure a HTTP CRL Endpoint (http://crl.internal.com/bla/test.crl) in the authentication profile for CRLDP? I only see the IP/Host and BaseDN options there. Or is th...

MVP

Jan 11, 2019

Hi Rene C.,

HTTP based CDPs are explicitly not supported by CRLDP based Authentication Profiles...

Note: Using HTTP URLs to define servers in CRLDP authentication for client certificates in BIG-IP LTM is not supported.

Source: https://support.f5.com/csp/article/K12975

You may check out the links below for alternative methods to use and auto-update HTTP based CRLs...

https://devcentral.f5.com/questions/sharing-icall-for-crl-update

https://devcentral.f5.com/codeshare/sample-linux-script-to-update-crl-file-from-certificate-authority

Cheers, Kai

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

CRLDP Authentication Profile

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

Problem with sending BotDefense logs to remote server

About F5 idle timeout and keep-alive

OSPF traps on BIG-IP v14

[APM] - How to clear the cached certificate for specific url

Audit Logging on LTM and GTM

Related Content

SSL Profiles Part 9: Server Authentication

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Doing mTLS Authentication per URL

LTM Authentication Profiles EOL?

F5 BIG-IP Advanced WAF – DOS profile configuration options.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS