Forum Discussion

unavailable's avatar
unavailable
Icon for Cirrostratus rankCirrostratus
Jun 24, 2025
Solved

Mutual authetication from imperva to F5

Hello team,

I would like to know how F5 manage mutual authenticazion from Imperva waf. 

In detail waf does not send certificate but, it is inside header http.

I have read documentations but it is referred only about how to configure authentication on F5;

in this case F5 works as man in the middle.

It when reveive the certificate will provide to send to the b.e.

Someone knowns how F5 manage it or is it possible to configure it by using F5 ?

Many thanks in advanced for your time.

I hope to receive information .

 

Rgds,

 

application delivery

4 Replies

  • Injeyan_Kostas's avatar
    Injeyan_Kostas
    Icon for Cumulonimbus rankCumulonimbus
    Jun 24, 2025

    You could definitely use iRules to extract cert from header and validate it as you wish

  • unavailable's avatar
    unavailable
    Icon for Cirrostratus rankCirrostratus
    Jun 25, 2025

    Hello, 
    many thanks for your fast reply.

    If I would not use Irule, the process will work with no problem or
    is necessary use Irule ?

    I read documentations of it and, when certificate arrive on F5, it will
    process the request also with no irule.

    In my scenario the architecture is:
    Client → Imperva WAF (Cloud) → F5 BIG-IP LTM → App Servers

    Many thanks for your support.

    Rgds,

    • Injeyan_Kostas's avatar
      Injeyan_Kostas
      Icon for Cumulonimbus rankCumulonimbus
      Jun 25, 2025

      Of course it will process the request.

      It will just not verify anything and just pass the cert header back to the app server, app server then will need to deal with the cert header and perform mTLS if needed.