Is it possible to discard client certificate session information after iRule processing?

We are implementing a service that has a MASSL requirement, and we have an iRule that looks at the DN and CN values of the client cert. In testing we have seen SSL consuming a large enough proportion of memory that the connection reaping is activated. If we weren't using an iRule we could disable the 'retain certificate' feature as described here: K19802202: Disabling the Retain Certificate option in an SSL profile to reduce memory pressure.

Is there a way to retain the certificate in session variables, complete iRule processing and then clear or discard the session variables?

application delivery

BIG-IP

iRules

Forum Discussion

Is it possible to discard client certificate session information after iRule processing?

Recent Discussions

Port Group on F5OS network setting

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Related Content

qkview process stuck

Device certificate Issuer and other information not updating on the browser's certificate details

iRule Processing query

Re: Management Certificate

Knowledge sharing: F5 Software Upgrade/RMA process