For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

zafer's avatar
zafer
Icon for Nimbostratus rankNimbostratus
Dec 28, 2009

InsertCertInServerHeaders

Hello i tested this rule, but it does not check empty Certificate from IE. i tested with Firefox and i try send Empty certificate to the vip, Redirect works properly but when i tested with IE i...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Feb 22, 2010
Hi Scot,

 

 

That example I posted above (Click here) should work for 9.4.x. But it doesn't do any enforcement based on the validation of the client cert against the trusted ca cert. Nor does it check the cert against an OCSP server. If you check your other post, I replied with a link to a Codeshare example I added that does validation of the client cert against the ca cert and one or more OCSP servers.

 

 

Aaron