Forum Discussion

mshafiq99_32052

Nimbostratus

May 11, 2017

OCSP and CRL

I would like to ask if it is possible to authenticate clients using OCSP and CRL concurrently. We started off with a private CA which supports OCSP based authentication. We have now purchased a cloud...

Cirrocumulus

May 11, 2017

It should work with LTM. APM also provides similar functionality.

However, you need a license for that:

https://support.f5.com/csp/article/K14768

For OCSP, here is the manual to setup:

https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-implementations-11-6-0/44.html

For CRL, if you just want the CRL, you can setup that in the client ssl profile. You should not need a license for that.

If you are looking for CRLDP, you do need the same license as OCSP. Here is the manual for that:

https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-implementations-11-6-0/40.html

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

OCSP and CRL

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Does F5 rSeries 4600 support 3rd Party SFP

no upload file .docx

F5 LACP

F5 BGP Peering in Active /Standby Cluster

AS3 Storage

Related Content

Building an OpenSSL Certificate Authority - Configuring CRL and OCSP

Configuring OCSP Stapling on BIG-IP

OCSP Responder

OCSP through an outbound explicit proxy

OCSP: Bad Request

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS