Forum Discussion

Nimbostratus

Oct 23, 2019

iRule for OSCP auth

Hi. I'm trying HTTPS traffic offload with client authentication using BIG-IP VE on AWS. And when Client Cert is expired or revoked, I want to show the user another web page. I am going to use...

Cumulonimbus

Oct 25, 2019

Hi,

Yes that would be if the F5 actually interrogated the OCSP. But I don't think it does.

Did you configure clientssl profile to "require" client certificate, and add a CRL object there ? With LTM, only CRL will be able to be checked by default, unless you use C3D.

Yoann

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule for OSCP auth

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

[ASM] : SQL-INJ "end-quote UNION" - How to allow this signature to specific url/uri/parameter only

[ASM] - How to disable the SQL injection attack signatures

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Help with SSH Virtual Server

ASM allow specific url from outside country of geolocation ON

Related Content

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Google Authenticator iRule For Two-Factor Auth With LDAP

IOWN APN, Trends, Airport and Port security, OSCP+, Aug 25th - Aug 31st - This Week In Security

Bolt-on Auth with NGINX Plus and F5 Distributed Cloud

Insert Basic Auth Header

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS