Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP LTM
Known Affected Versions:
11.3.0, 11.4.0, 11.4.1
Fixed In:
11.5.0, 11.4.1 HF9
Opened: Aug 07, 2013 Severity: 3-Major Related Article:
K15100
In serverssl profile, if set "Untrusted Certificate Response Control" to ignore. When backend server sends self-signed untrusted certificate, BIG-IP should ignore it.
BIG-IP should ignore the self-signed untrusted certificate, treat the certificate as valid and continue the handshake instead drop the handshake.
Serverssl profile set "Untrusted Certificate Response Control" to ignore When backend server sends self-signed untrusted certificate
None.
Ignore the self-signed untrusted certificate when serverssl profile sets "Untrusted Certificate Response Control" to ignore.