Forum Discussion
hooleylist
Oct 22, 2010Cirrostratus
Hi Brian,
I think you could use 'SSL::session invalidate' to remove the client's SSL session ID from LTM's cache, followed by SSL::renegotiate to request the client to re-authenticate with a client cert.
http://devcentral.f5.com/wiki/default.aspx/iRules/ssl__session
http://devcentral.f5.com/wiki/default.aspx/iRules/ssl__renegotiate
Aaron