Dale_Cooke_1773
Nov 19, 2015Nimbostratus
SSL Cipher (reporting, graphing, logging)
We are in the process of disabling weaker Cipher strengths on our https servers, I wondered if anyone has any experience of getting the F5 to log and report on the Cipher strength that each browser session negotiates? The idea would be to report on the amount of users connecting with weaker cipher strengths so we can understand how many people we might affect if we disabled a specific cipher. At the moment the SSL handshake is passed through the F5 and done directly on the server, but I'm open to the idea of moving the SSL negotiate on to the VIP (F5) if it would give this level of visibility.