refra_151287
Aug 09, 2014Cirrus
SSL validation.
Hi all, I need to validate certificate, username and password from local CA for requests from client to server, How can I do that by BIG-IP? here i'll offload and the F5 will act as the server.
Hi all, I need to validate certificate, username and password from local CA for requests from client to server, How can I do that by BIG-IP? here i'll offload and the F5 will act as the server.
Do you mean validating a client cert? Try this iRule; https://devcentral.f5.com/wiki/irules.Validate_certificate_Common_Name_and_revocation.ashx
For username /password I will assume you are using an "Authorization" request header - this should work;-
when HTTP_REQUEST {
if {!([b64decode[getfield [HTTP::header Authorization] ' ' 2]] eq "username:password")} {
HTTP::respond 401
return
}
}
Authorization request header, what does that mean?
username and password are not in certificate. authorization http header is used for authentication.
Authorization request header, what does that mean?
username and password are not in certificate. authorization http header is used for authentication.