Joseph_White_20
Oct 01, 2015Nimbostratus
TWO-WAY SSL fail with URI redirect
A few years ago we setup two-way SSL, X.509 as our security model for our web applications. All negotiation is handled at the F5. Current date, we have added a new endpoint to our web application tha...
- Oct 02, 2015
If you setup the clientssl profile to request, rather than require the client cert, then you can use an iRule to require the cert for all paths other than /bauth. check out this link (scroll down to the 2nd example) https://devcentral.f5.com/wiki/iRules.ClientCertificateCNChecking.ashx.
Let us know if you need any more help than that.