Reencryption, what if the certificate on the server expires ?

Question

We use Re-encryption to a web site. 
SSL offload and then re-encrypt to web server.
The re-encryption is not that important but a requirement, wondered what would happen if the Server certificate should expire ( the last certificate ) client --&gt; LTM --&gt; Server
Would LTM still re-encrypt using the expired certificate on the server? &nbsp;

nathe · Answer

vineyard,&nbsp;
yes it would, if you're using the default serverssl profile that is. this profile does not perform any validation of the server ssl certificate.&nbsp;
Hope this helps,&nbsp;
N&nbsp;

vineyard_166933 · Answer

Perfect. Created a new serverssl profile with Expire Certificate Response control set to ignore. Just what we needed, thanks. &nbsp;

nathe · Answer

glad i could help

Forum Discussion

Reencryption, what if the certificate on the server expires ?

3 Replies

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Port Group on F5OS network setting

Advise on setting up IRULE

F5 iRule to replace host to path

Related Content

LTM Certificate expire

CheckMk F5 Certificate Expiration using SNMP

Re: Management Certificate

Expired ssl warning

Automate Let's Encrypt Certificates on BIG-IP