For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Brent_J's avatar
Brent_J
Icon for Nimbostratus rankNimbostratus
Apr 23, 2014

Have asked for a RFE to be raised. Has been a bit tardy on the response so far. Just answering their questions from PD regarding why this would be a good idea. So hopefully get a RFE reference soon. Also doesn't seem to be any way of requesting a machine cert at this time via iRule. Only User certs are currently supported which is frustrating.

 

Regards, Brent

 

vandenhoutenp_9's avatar
vandenhoutenp_9
Icon for Nimbostratus rankNimbostratus
May 13, 2014
Hi Brent, I'm trying to do something similar. We don't have an OCSP responder available, is there an easy way to use a static CRL or the CRLDP in the machine cert to check the revocation status? I've tried a standard CRLDP check in the access policy directly after the machine cert auth check but this seems to revert to the client/user certificate that is presented at the start of the access policy. Thanks Peter