Forum Discussion

Historic F5 Account

Mar 17, 2006

decrypting server cookie

Can LTM decrypt a server's cookie (3DES w/private key exchange)? Login server sets an encrypted cookie containing info that we'd like to reference in a rule. thanks /deb

Historic F5 Account

Mar 18, 2006

So to insert the key value into the rule, I'd use something like this, but insert the actual key value in place of "key_value":

when RULE_INIT {
   set ::key "key_value"
}

and then reference the key for decryption like this:

[AES::decrypt $::key $encryptedCookie]

???

Seems like that might raise a security policy violation flag, since the server's private key would be clearly visible in the GUI even for Read-Only users, and also exposed in cleartext in the config files/tech.outs, no?

thanks for the assist!

/deb

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

decrypting server cookie

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Kubernetes cert-manager + LetsEncrypt + F5

ACME DNS RFC-2136 Let's Encrypt certs

MAC users unable to access Internet when on Netskope

Could not communicate with the system. Try to reload page.

F5 mssql health monitor failing

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

decrypted tcpdump capture without using an iRule and without using tshark

encrypted cookie generation and decryption

Decrypting BIG-IP Packet Captures Automatically

Decrypting TLS traffic on BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS