Forum Discussion

Nimbostratus

Oct 08, 2009

OCSP responder trouble shooting

One of our test server is having trouble to initiate an OCSP check. The authentication status value is always misleading 1. However, from the tcp trace, we have noticed that there has been no traffic ...

config

design

hoolio

Cirrostratus

Oct 28, 2009

Hi Dimka,

Can you try adding SSL::session invalidate before calling SSL::renegoatiate and see if IE6 clients then work? One issue I was seeing with some versions of IE is that they wouldn't use a new SSL session ID when LTM was re-negotiating the SSL handshake to request the client cert. Calling SSL::session invalidate seemed to force IE to select a new SSL session ID and then the handshake completed.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

OCSP responder trouble shooting

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

Problem with sending BotDefense logs to remote server

About F5 idle timeout and keep-alive

OSPF traps on BIG-IP v14

[APM] - How to clear the cached certificate for specific url

Audit Logging on LTM and GTM

Related Content

Trouble applying GoDaddy certificate to a virtual server

OCSP Responder

Trouble with TCP::option set 28

Trouble redirecting on APM rejection.

Change cookie domain in HTTP::respond

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS