Forum Discussion

Nimbostratus

Oct 23, 2019

iRule for OSCP auth

Hi. I'm trying HTTPS traffic offload with client authentication using BIG-IP VE on AWS. And when Client Cert is expired or revoked, I want to show the user another web page. I am going to use...

Nimbostratus

Oct 28, 2019

Thank you for your reply.

I configured "Client Certificate" required in client ssl profile, and then virtual server' authentication profile is set to "OCSP Prof".

In SSL Profile, I didn't add CRL object because I use OCSP Profile.

I can see packets(TCP 8181) on OCSP Responder Server.

It seems to that LTM use OCSP Responder for CLIENT AUTH.

Do I have to configure C3D?

Regards,

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule for OSCP auth

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How to configure pool to go down if multiple members are down

Terraform LTM provider - ICMP disabled on resulting VIPs

AS3 Storage

Problems connecting to vpn after upgrading to ubuntu 24.04

How can I run the ‘Network Map’ feature from the CLI or how can I view this information?

Related Content

IOWN APN, Trends, Airport and Port security, OSCP+, Aug 25th - Aug 31st - This Week In Security

Bolt-on Auth with NGINX Plus and F5 Distributed Cloud

Google Authenticator iRule For Two-Factor Auth With LDAP

Insert Basic Auth Header

Python SDK Cookbook: Working with Auth Tokens

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS