For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Jacob_Miller_61's avatar
Jacob_Miller_61
Icon for Nimbostratus rankNimbostratus
Jan 20, 2005

Inserting Client CERT headers in Version 9

I was hoping to test the insertion of headers in version 9. Maybe I'm just too thick to figure it all out, but I need some help. I would like a rule to insert the CLIENT HTTP headers similar to the ...
application delivery
dev
devops
iRules
bl0ndie_127134's avatar
bl0ndie_127134
Historic F5 Account
Jan 20, 2005
The format for that command has chaged slightly in version 9.0. Give this a try. 

set c [SSL::cert 0] 
 HTTP::header insert [X509::cert_fields  $c [SSL::verify_result] subject issuer]

Here are all the options that we support ... 

 
 “versionnum” – Client certificate version number 
 “serial” – Client cert serial number 
 “sigalg” – Client cert signature algorithm 
 “issuer” – Client cert issuer 
 “validity” – Client certificate validity 
 “subject” – Client certificate subject 
 “subpubkey” – Client certificate subject public key 
 “hash” – Client certificate hash