Forum Discussion

Nimbostratus

Jul 12, 2011

SSL::session invalidate issue

BIG-IP version:10.2.0 HF1 We have a virtual server with a client SSL profile configured for mutual authentication and we would like to invalidate the SSL session when the user logs out from ...

Nimbostratus

Jul 14, 2011

Hi Aaron,

We have migrated yesterday from 10.2.0 HF1 to 10.2.2 to make sure we have all the latest fixes.

It looks like the cached SSL session is indeed made available accross all units. When navigating in the application, as we can see in the logs, distinct processors are sometimes used and the SSL session remains the same.

However the session invalidation seems only to invalidate the cached session at the "scope" of the processor that has executed the command.

We have now opened a case with F5 support.

Bernard

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SSL::session invalidate issue

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

err tmm1[24399]: 011f0007:3: http_process_state_prepend - Invalid action:0x107041 clientside

Regex issue

SSL for Authenticated Sessions

iRulesLX: Invalid command name

APM Session Invalidation Using ASM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS