Forum Discussion

Nimbostratus

Oct 01, 2015

TWO-WAY SSL fail with URI redirect

A few years ago we setup two-way SSL, X.509 as our security model for our web applications. All negotiation is handled at the F5. Current date, we have added a new endpoint to our web application tha...

application delivery

devops

iRules

IheartF5_45022
Oct 02, 2015
If you setup the clientssl profile to request, rather than require the client cert, then you can use an iRule to require the cert for all paths other than /bauth. check out this link (scroll down to the 2nd example) https://devcentral.f5.com/wiki/iRules.ClientCertificateCNChecking.ashx.

Let us know if you need any more help than that.

IheartF5_45022

Nacreous

If you setup the clientssl profile to request, rather than require the client cert, then you can use an iRule to require the cert for all paths other than /bauth. check out this link (scroll down to the 2nd example) https://devcentral.f5.com/wiki/iRules.ClientCertificateCNChecking.ashx.

Let us know if you need any more help than that.

Joseph_White_20

Nimbostratus

Oct 02, 2015

Exactly what I needed. Thank you

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

TWO-WAY SSL fail with URI redirect

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

URI host header redirect failing

Anchor Link Redirect

url redirect

Enabling ASM profile from iRule fails

URL redirection iRule

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS