Forum Discussion

Nimbostratus

6 years ago

iRule for OSCP auth

Hi. I'm trying HTTPS traffic offload with client authentication using BIG-IP VE on AWS. And when Client Cert is expired or revoked, I want to show the user another web page. I am going to use...

Nimbostratus

6 years ago

Thank you for your reply.

I configured "Client Certificate" required in client ssl profile, and then virtual server' authentication profile is set to "OCSP Prof".

In SSL Profile, I didn't add CRL object because I use OCSP Profile.

I can see packets(TCP 8181) on OCSP Responder Server.

It seems to that LTM use OCSP Responder for CLIENT AUTH.

Do I have to configure C3D?

Regards,

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule for OSCP auth

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

How to Verify config before loading to F5

Related Content

AppWorld Berlin iRules Contest!

Google Authenticator iRule For Two-Factor Auth With LDAP

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

IOWN APN, Trends, Airport and Port security, OSCP+, Aug 25th - Aug 31st - This Week In Security

Bolt-on Auth with NGINX Plus and F5 Distributed Cloud

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS