Jason_Drake_204
Jul 07, 2015Nimbostratus
Forwarding of X509 HTTP Header to application after termination of SSL
Hi, I'm fairly new to F5 and was wondering if there was a way to insert part of the x509::subject to the HTTP header.
A regular iRule for this would look partly like this
when HTTP_REQUEST {
if { [SSL::cert count] > 0 } {
HTTP::header insert CERTSUBJECT [X509::subject [SSL::cert 0]]
}
}
however I would like to just get the 10 digit EDIPI 9999999999 below:
Subject CN=John.D.Smith.9999999999,OU=CONTRACTOR,OU=PKI,OU=DoD,O=U.S.
Is there a way to do this? Thanks J