ltm rule command X509 subject public key type
iRule(1) BIG-IP TMSH Manual iRule(1)
X509::subject_public_key_type
Returns the subjectaXXs public key type of an X509 certificate.
SYNOPSIS
X509::subject_public_key_type CERTIFICATE
DESCRIPTION
Returns the subjectaXXs public key type of the specified X509
certificate. The returned value can be either RSA, DSA, or unknown.
Syntax
X509::subject_public_key_type
* Returns the subjectaXXs public key type of the specified X509
certificate. The returned value can be either RSA, DSA, or unknown.
RETURN VALUE
Returns the subjectaXXs public key type of an X509 certificate.
VALID DURING
ANY_EVENT
EXAMPLES
when CLIENTSSL_CLIENTCERT {
set client_cert [SSL::cert 0]
log local0. "Cert subject - [X509::subject $client_cert]"
log local0. "Cert public key type - [X509::subject_public_key_type $client_cert]"
if { [X509::subject_public_key_type $client_cert] equals "unknown" } {
SSL::verify_result 50
}
set error_code [SSL::verify_result]
log local0. "Cert verify result - [X509::verify_cert_error_string $error_code]"
}
HINTS
SEE ALSO
CHANGE LOG
@BIGIP-9.0.0 --First introduced the command.
BIG-IP 2017-01-31 iRule(1)