Forum Discussion

Nimbostratus

Jun 16, 2017

Insert client certificate into APM session variable via IRule

Hello! First time poster longtime reader. I´m trying to extract the Subject value from a client certificate and insert the value in to a APM session variable but with no luck. The Irule in ques...

application delivery

BIG-IP Access Policy Manager (APM)

irules

Jad_Tabbara__J1

Cirrostratus

Jun 16, 2017

Hello Squeak,

Have you added the event "Access_Policy_Agent_Event" to set your variable ?

when ACCESS_POLICY_AGENT_EVENT {

if { [ACCESS::policy agent_id] eq "id_of_your_irule_event" } {
 ACCESS::session data set session.client.unique_id $subject
 log local0. "Verifying the value of unique_id ===> [ACCESS::session data get session.client.unique_id]"
} 

}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Insert client certificate into APM session variable via IRule

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

GRPC through F5 Virtual Server [RST_STREAM with error code: INTERNAL_ERROR]

[ASM] - How to disable the SQL injection attack signatures

[ASM] : SQL-INJ "end-quote UNION" - How to allow this signature to specific url/uri/parameter only

Changes to DO and AS3 GitHub - no longer monitored

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Related Content

F5 Architecture Track Sessions - AppWorld 2026

Automating Certificate Management on F5 BIG-IP

APM Session Variable Logging

APM variable assign examples

Certificate Automation for BIG-IP using CyberArk Certificate Manager, Self-Hosted

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS