Forum Discussion
Prakash_Jayaram
Sep 29, 2015Nimbostratus
Hello Hannes Rapp,
Thanks for your answer. I am able to see the certificate in header. how to take this certificate out from the header and decrypt it. How can I proceed further using it like a normal SSL::cert 0, etc..Please suggest.
- Hannes_RappSep 29, 2015NimbostratusIf you see the HTTP header, your traffic flow is already decrypted - you would not be able to access this information in case of encrypted traffic flow. This means your F5 offloads the SSL (completes the SSL handshake without authenticating the client). This header will not be used for traffic decryption at any point, but you can still use this information for client-authentication at the upper layer. Does this make sense? Based on your initial post, it seems like you want to create a client-authentication solution but you have the SSL client-certificate information in HTTP protocol information. Can you confirm this is what you're trying to acomplish or if there's a misunderstanding here?