Forum Discussion

Nimbostratus

Mar 14, 2008

OCSP w/ requested client certifications.

When configuring a virtual server client certificates can be ignored, requested, or required. Is there a way to determine what how a particular VS is configured to handle client certificate...

Nimbostratus

Mar 19, 2008

And what piece of data in the client request would you use to make that determination? If you can't determine which profile to use before connecting to the server, then you have to use a default profile to connect, at which point it's too late to force a require or ignore.

Nothing in the client request. I'm not looking to change the way that the SSL session is handled, but the OCSP authentication needs to be conditional depending on whether client certificates are present or not.

I was hoping for a system-provided variable, similar to how you can write iRules based on the number of available nodes in a pool.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

OCSP w/ requested client certifications.

F5 Academy at AppWorld 2026

Kostas Injeyan - October 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Cannot automatically add the LTM virtual server to DNS

Strict header Insertion

SSL Offloading and Backend pool https

Adding metadata to certificates objects

Terraform AS3 code for GTM Only.

Related Content

Automating Certificate Management on F5 BIG-IP

Using Client Subnet in DNS Requests

Request Client Certificate And Pass To Application

Automating ACMEv2 Certificate Management on BIG-IP

SSL Client Certification Alert 46 Unknown CA

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS