Forum Discussion
Thiyagu
Cirrus
CirrusNeed of an Irule help to extract the SN# from the client side certificate
Hello All, we are working to to extract the device SerialNumber from the certificate send it as "X-Common-Name" header to the servers.
Could you please help if you would have worked on the similar iRule in the past?
Regards,
Thiyagu
HI Thiyagu ,
Have a look here : https://community.f5.com/t5/codeshare/extracting-the-sni-server-name/ta-p/288029I haven't tried this irule , but it looks good
ThiyaguHi Mohamed, Thank you so much for your help. We are authneticating via mutual TLS and SN# of cert needs to extracted and pass it along in the HTTP header as X-Common-Name.
Thanks,Thiyagu.
ohh ,
so you need to extract this tls extension and insert it as a header to server side ?
you need to insert SNI as header " X-common-name "
Let me check for proper irule , I did before somthing like that , but it was another tls extension
- Thiyagu
Sorry Guys for the confusion. We need to extract the below value in the client certificate (from Subject CN)
Common Name: xxxxxx
And it needs to insert in the HTTP header to the server as "X-Common-Name"Could you please help with an iRule to meet this requirement?
Hi Thiyagu ,
you can use somthing like that : https://community.f5.com/t5/technical-forum/capturing-the-cn-from-a-x509-subject/td-p/226380
