passing ssl cert through on de&recrypt

Question

hi,&nbsp;
&nbsp;is there any way to relay the end server's ssl certificate to a client if we're decrpyting and the reencrypting an ssl connection? rather than having to import it into the F5 each time, i'd like to just require a cert under a serverssl profile and bounce it on to the client.&nbsp;
&nbsp;Cheers&nbsp;
&nbsp;Chris

hooleylist · Answer

I don't think there is any way to use an iRule (or iControl?) to dynamically change a client SSL profile to use the cert a server presents--particularly if you consider that the client side connection needs to be established before a server side connection is built.  &nbsp;
&nbsp;Aaron

chris_phillips · Answer

hmm, i wasn't sure at what stage the server side connection would be opened. i'm mixing this up with oneconnect stuff as well so there would be a serverside connection open usually already. not that it would have already been assigned to that incoming client connection i guess.

Forum Discussion

passing ssl cert through on de&recrypt

2 Replies

Recent Discussions

[ASM] - what is "Browser Challange file" ?

Rewrite uri translation not working

no available managed rule groups for Israel il-central-1

About shun list for L7 DDoS?

CONNECTION IS LOST DUE TO SELF IP IS DELIVERED

Related Content

Passing Arguments to iCall Scripts

Passing Client CAC / Smart Card Cert to Application Server

WSS LTM not passing data correctly

'How to Pass the CKA Exam' Next Time on DevCentral Connects

ASM not passing client cookies to the node servers