IRONMAN
Aug 30, 2019Cirrostratus
HTTP header insert with CN and for SHA1 thumbprint of the SSL certificate ?
Hi Any one help to edit the below irule to match my requirement, HTTP header insert with CN(Certificate name) and for SHA1 thumbprint of the SSL certificate to backend servers.
LTM VIP is HTTPS with only client SSL profile
Members are connected to LB with port 3000, No Server Side SSL profile.
when CLIENTSSL_HANDSHAKE
{
set cur [SSL::sessionid]
set ask [session lookup ssl $cur]
if { $ask eq "" } {
session add ssl [SSL::sessionid] [SSL::cert 0]
}
}
when HTTP_REQUEST
{
set id [SSL::sessionid]
set the_cert [session lookup ssl $id]
if { $the_cert != ""}
{
HTTP::header insert X-Client-Cert [X509::whole $the_cert]
}
}