Forum Discussion

scoti74's avatar
scoti74
Icon for Nimbostratus rankNimbostratus
Dec 13, 2019

Server SSL Profile Authenticate Name

Hi Guys,

 

We're currently trying to work out a solution for s SSL Server profile that can authenticate multiple entries for "Authenticate Name" based on the CN in the Server Authentication section of an SSL Profile.

 

Understandably having a single entry works no problems but we have outbound connectivity to multiple end clients with various CN's that we would like to authenticate without having to either build multiple Virtual Servers or attach multiple SSL profiles to the outbound Virtual Server.

 

Is it possible to achieve this with say an iRule associated with a Data Group that contains all the expected CN responses from the server certificate response on the remote end of the SSL connection?

 

Cheers

application delivery
iRules
LTM

1 Reply

Sort By
  • ninu's avatar
    ninu
    Icon for Nimbostratus rankNimbostratus
    Feb 29, 2020

    The BIG-IP Server SSL profile enables the BIG-IP system to initiate secure connections to your SSL servers by using a fully SSL-encapsulated protocol and providing configurable settings for managing server-side SSL connections. Typically, you need to set only some of the available settings, while you should keep the remaining settings at their default values unless otherwise advised by F5 Technical Support. The BIG-IP Server SSL profile settings are organized into the following sections and are described in the following tables.

    ____________________________________________________________________

    I hope this helps

    Regards Ninu dog doors