For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

mikegray_198028

Icon for Cirrus rank

Cirrus

Oct 15, 2018

disable client authentication

hello team, We have one vip running with a client ssl profile with client auth enabled. can we disabled client auth based on url using irule?

application delivery

Icon for Employee rank

Employee

Oct 16, 2018

same host name only difference is client authentication enabled on one

It matters because you can't modify an SSL profile (OSI layer 6) on data you receive after decryption (layer 7). If you're switching based on the URI (path), you're only option is to force a renegotiation. You can either do this in a rather complex iRule, or APM can do it naturally using step-up auth: https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-sso-13-0-0/20.html

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5