Forum Discussion
OCSP authentication query via http proxy
Hello,
I need some help with configuring authentication profile for VS. We have service with client authentication using certificates. I need verify validity of client certificate using OCSP.
So I've created authentication profile with OCSP responder definition. The missing part is how to send http query via our http proxy gateway? I do not see such option in GUI.
There is predefined system iRule called _sys_auth_ssl_ocsp which is responsible for doing query. I beleive that modifying this iRule I could send request via proxy.
Could support me with this?
- Miloslav_PriklNimbostratus
Hello, I found solution for this issue. If you have http proxy listenting on http port 80 is solution a little bit easier. Create records in hosts with FQDN of OCSP responder and IP address of your http proxy. If your http proxy listen on different port as 80. We can create virtual service which listen on port 80 and forward all communication to one pool member - your http proxy. Then we create same host records with IP address of this virtual service.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com