Forum Discussion

Cirrus

7 years ago

tmsh command to list client-ssl profiles - Full noted values

I am working on a project to remove TLS1.0 from our F5 BIG-IP systems. The company want first a good overview where TLS1.0 is still used (which VIP's) so i exported those with tmsh command but if the...

Nimbostratus

7 years ago

If you switch to the tmsh command line (just type 'tmsh' from bash) you can do the following commands:

For all client ssl profiles on the default partition (/Common):

show ltm profile client-ssl raw | grep 'Ltm::ClientSSL\|Protocol'

For all client ssl profiles on all the other partitions:

show ltm profile client-ssl /*/* raw | grep 'Ltm::ClientSSL\|Protocol'

ToonVA

Cirrus

7 years ago

Thanks for the info! Is there a way to export this to a file also?

show ltm profile client-ssl raw | grep 'Ltm::ClientSSL|Protocol' > exportssl

I only get the option to display them on my screen

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

tmsh command to list client-ssl profiles - Full noted values

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Recommendation for Adv. Lab

Manually add or remove IP address from IP Intelligence blacklist category

Priority Group Activation is not working

How to Verify config before loading to F5

F5 ASM/AWAF – violations logged but no learning suggestions generated

Related Content

SSL Profiles Part 8: Client Authentication

Client SSL Profile

Client vs Server SSL profile

TLS Fingerprinting to profile SSL/TLS clients without decryption

SSL PROFILE - How to use multiple SSL Profile Client in Virtual Server

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS