Passing SSL cert to back end servers

Question

We will be doing two way SSL on the F5.  That is once our clinets accept our ssl cert, they will also require us to present their ssl client cert which I have installed.  The question here is:&nbsp;
&nbsp;How do I then send their SSL cert to my web serves that are part of a POOL?&nbsp;
&nbsp;Thanks,
&nbsp;Jeff

colin_walker_12 · Answer

This forum is intended for discussion regarding iRules, not general product support.&nbsp;
&nbsp;I would say, however, that if you're looking to re-encrypt data on the back end of the connection, you'll want to start playing with Server SSL Profiles. As to which cert to send the servers, that's up to you.&nbsp;
&nbsp;Colin

jeff_morrison_4 · Answer

Thanks Colin,&nbsp;
&nbsp;The traffic between the F5 and the backend servers is not encrypted.  What I need to do is pass the clients ssl cert to the backend server.

colin_walker_12 · Answer

Well, you could certainly insert the contents of the cert back into an HTTP header and pass it along with the request to the back end servers and have them pull out the information. I know there are a couple good examples of that here in the forums.&nbsp;
&nbsp;Colin

Forum Discussion

Passing SSL cert to back end servers

3 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

VIP in https that redirect to another vip in https

2026 301a exam

F5OS login with admin/root failed via console

UCS Encryption Question

Related Content

Passing Client CAC / Smart Card Cert to Application Server

iRule: passing client cert to node

Passing Arguments to iCall Scripts

Free Passes to AppWorld 2025 – First Come, First Served!

Pass client cert based on POST data

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS