Forum Discussion
Dev_56330
Cirrus
Jan 15, 2018Remote User Management - LDAP Client Cert
Has anyone successfully deployed LDAP using client cert authentication to the BIG-IP TMUI? I see the guide though it is not very intuitive so I was curious if anyone would be willing to share their ...
Dev_56330
Cirrus
Jan 15, 2018Below is my httpd config.
root@(bigip1)(cfg-sync Standalone)(ModuleNotLicensed::Active)(/Common)(tmos) list sys httpd all-properties
sys httpd {
allow { All }
auth-name BIG-IP
auth-pam-dashboard-timeout off
auth-pam-idle-timeout 12000
auth-pam-validate-ip on
description none
fastcgi-timeout 300
fips-cipher-version 0
hostname-lookup off
include none
log-level debug
max-clients 10
redirect-http-to-https disabled
request-body-max-timeout 0
request-body-min-rate 500
request-body-timeout 60
request-header-max-timeout 40
request-header-min-rate 500
request-header-timeout 20
ssl-ca-cert-file /Common/CurrentCACert
ssl-certchainfile none
ssl-certfile /etc/httpd/conf/ssl.crt/server.crt
ssl-certkeyfile /etc/httpd/conf/ssl.key/server.key
ssl-ciphersuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA:AES256-SHA:AES128-SHA256:AES256-SHA256:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:DES-CBC3-SHA
ssl-include none
ssl-ocsp-default-responder http://dc.test.com/ocsp
ssl-ocsp-enable on
ssl-ocsp-override-responder off
ssl-ocsp-responder-timeout 300
ssl-ocsp-response-max-age -1
ssl-ocsp-response-time-skew 300
ssl-port 443
ssl-protocol all
ssl-verify-client require
ssl-verify-depth 10
}
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects