SSL validation.

Question

Hi all,
I need to validate certificate, username and password from local CA for requests from client to server, How can I do that by BIG-IP?
here i'll offload and the F5 will act as the server.&nbsp;

iheartf5_45022 · Answer

Do you mean validating a client cert?  Try this iRule;
https://devcentral.f5.com/wiki/irules.Validate_certificate_Common_Name_and_revocation.ashx
For username /password I will assume you are using an "Authorization" request header - this should work;-
when HTTP_REQUEST {
    if {!([b64decode[getfield [HTTP::header Authorization] ' ' 2]] eq "username:password")}             {
        HTTP::respond 401
        return
    }
}

refra_151287 · Answer

i really appreciate ur rapid response.
Authorization request header, what does that mean?

nitass_89166 · Answer

Authorization request header, what does that mean?&nbsp;

username and password are not in certificate. authorization http header is used for authentication.&nbsp;

nitass · Answer

Authorization request header, what does that mean?&nbsp;

username and password are not in certificate. authorization http header is used for authentication.&nbsp;

refra_151287 · Answer

thanx nitass you really helped me

Forum Discussion

SSL validation.

6 Replies

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Port Group on F5OS network setting

Advise on setting up IRULE

F5 iRule to replace host to path

Related Content

Implementing SSL Orchestrator - Validation & Troubleshooting

iRule to accept client then SSL cert validation

APM Customization: Password Change Validation

Update Template Validity

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy