For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

JDamian's avatar
JDamian
Icon for Nimbostratus rankNimbostratus
Jun 23, 2023

[X509::whole [SSL::cert 0]] shows incomplete certficate

Hi In order to debug a problem regarding client certificates I added a line into a iRule for logging the certificate:   log local0.info "ClientSide [IP::client_addr] - Certificate: [X509::whole [S...
devops
Paulius's avatar
Paulius
Icon for MVP rankMVP
Jun 23, 2023

JDamian I know that the F5 typically doesn't look at HTTP responses after a certain line for HTTP health monitors so it could be a similar situation for this logging information. It's possible that we can assist in resolving your greater issue if you can expand on what issue you're having that resulted in you having to log the SSL certificate of a connection.

JDamian's avatar
JDamian
Icon for Nimbostratus rankNimbostratus
Jun 26, 2023

My greater issue is that after my LB team upgraded a F5 BIG IP device to 16.1.3.4 some apps requiring client certificate stopped working properly from certain clients -- an iRule did the job of requiring the certificate for last 5 years.

We have narrow down the problem to .NET client connections because the same client requests from SOAP-UI or Java have no problem.