ltm rule command SSL cert constraint
iRule(1) BIG-IP TMSH Manual iRule(1)
SSL::cert_constraint
Inserts cert constraint information to the certificate.
SYNOPSIS
SSL::cert_constraint (ARG ARG)
DESCRIPTION
Inserts a certificate extension to the certificate.
RETURN VALUE
SSL::cert_constraint
Inserts the as an extension with OID=oid and value=oid-value to the certificate.
VALID DURING
CLIENTSSL_CLIENTHELLO CLIENTSSL_SERVERHELLO_SEND CLIENTSSL_CLIENTCERT CLIENTSSL_HANDSHAKE
EXAMPLES
when CLIENTSSL_CLIENTHELLO {
log local0.info "CLIENTSSL_CLIENTHELLO"
SSL::cert_constraint 1.2.3.4.5 "This is the oid-value of 1.2.3.4.5"
}
when CLIENTSSL_SERVERHELLO_SEND {
log local0.info "CLIENTSSL_SERVERHELLO_SEND"
SSL::cert_constraint 1.2.3.4.5 "This is the oid-value of 1.2.3.4.5"
}
when CLIENTSSL_CLIENTCERT {
log local0.info "CLIENTSSL_CLIENTCERT"
SSL::cert_constraint 1.2.3.4.5 "This is the oid-value of 1.2.3.4.5"
}
when CLIENTSSL_HANDSHAKE {
log local0.info "CLIENTSSL_HANDSHAKE"
SSL::cert_constraint 1.2.3.4.5 "This is the oid-value of 1.2.3.4.5"
}
HINTS
SEE ALSO
CHANGE LOG
@BIGIP-15.0.0 --First introduced the command.
BIG-IP 2020-06-23 iRule(1)