Forum Discussion

Nimbostratus

Mar 10, 2011

One to one SSL Mapping

Hi All, On Microsoft IIS, we can do a one-to-on certificate mapping so each user has his/her own certificate embedded in the browser for authentication. Can we do the same in Fir...

BIG-IP Access Policy Manager (APM)

remote access

security

Minn_62043

Cirrostratus

Jun 16, 2011

In FirePass, you can add "Client Cert Check" in Pre-logon sequence.

Users > Endpoint Security > Pre-Logon Inspection > Client Certificates

And edit the rule to match something in the current session variables. (e.g if you have a specific CN name that matches some of the unique user session variables).

I haven't tested, though =)

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

One to one SSL Mapping

Recent Discussions

Can you set Kerberos AAA server via session variable?

HTML Code injection Not detected by ASM

What will be happen to live and existing connections when failover HA BIG IP active-standby

SSL Offload and remove FQDN

High CPU utilization (100%).

Related Content

API Gateway Mapping - Gartner - F5

F5 TIC3.0 Capability Mappings

Bigpipe Mappings

API Security Strategy - Discover and map APIs, block unwanted connection and prevent data leakage

BIG-IP APM: RADIUS and SSO mapping broken

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS