refra_151287
Aug 09, 2014Cirrus
SSL validation.
Hi all,
I need to validate certificate, username and password from local CA for requests from client to server, How can I do that by BIG-IP?
here i'll offload and the F5 will act as the server.
Do you mean validating a client cert? Try this iRule; https://devcentral.f5.com/wiki/irules.Validate_certificate_Common_Name_and_revocation.ashx
For username /password I will assume you are using an "Authorization" request header - this should work;-
when HTTP_REQUEST {
if {!([b64decode[getfield [HTTP::header Authorization] ' ' 2]] eq "username:password")} {
HTTP::respond 401
return
}
}