Forum Discussion

Cirrocumulus

Apr 12, 2022

Request client cert auth based on URL

I am trying to request client cert authentication based on select URL and it works with a whitelist only but when i use the negate in the datagroup with a datagroup including URI string values it doe...

application delivery

cert auth

irule

spalande
Apr 20, 2022
Try replacing [SSL::cert 0] with [X509::whole [SSL::cert 0]]

spalande

Nacreous

yes as you would renegotiate for secure URLs in the middle of the session.

Marvin

Cirrocumulus

Apr 26, 2022

As we already perform renegotiate in the irule it is not required to enable renegotiate checkbox in the clientSSL profile right? Or is that still prerequisite?

SSL::renegotiate enable
SSL::renegotiate

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Request client cert auth based on URL

Recent Discussions

SSL bridging without SSL proxy forward

Client SSL Profile set to Require Client Certificate breaks RDP in APM

TS Declarations for DNS

APM file and registry key date check 8 days old

Should config via cli rather than gui?

Related Content

Pass client cert based on POST data

F5 Client filtering based on cisco switch port info

Multiple Algorithms on global VIP based on the group of clients.

Redirect Proxy CONNECT Request at LB level based on URL

Cannot edit "per-request policies" Request status 500

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS