Piotr_Lewandows
Altostratus
AltostratusSolved
SSL Intercept and clearing certificates
Hi,
In case of SSL Intercept LTM is creating on the fly certificates on the client side to decrypt traffic.
I can see in VS stats in SSL Forward Proxy for client profile position:
Cach...
https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/bigip-tmsh-reference-12-0-0.html
cached-certs Displays and deletes SSL Forward Proxy cached certificates on the BIG-IP(r) system. Syntax Use the cached-certs component within the ltm.clientssl-proxy module to manage connections using the following syntax. Display show cached-certs virtual [name] clientssl-profile [name] Delete delete cached-certs virtual [name] clientssl-profile [name] Description You can use the cached-certs component to display or delete SSL Forward Proxy cached certificates based on a specified clientssl profile. Options • virtual Specifies the name of the virtual server that you want to display or delete cached certificates from. • clientssl-profile Specifies the name of the clientssl profile that belongs to the virtual selected. See Also delete, show, tmsh
