Kevin Stewart's repositories
f5_sslo_ansible
An Ansible collection for automated configuration of the F5 SSL Orchestrator
sslo-consolidated-services
Docker compose configurations to create all of the SSLO security services on a single Ubuntu 18.04 VM.
sslo_o365_update
A small Python (2.x) utility to download and maintain the dynamic set of Office 365 URLs as data groups and custom URL categories on the F5 BIG-IP, for use with SSL Orchestrator
f5-apm-forward-proxy-connection-based-auth
Creates a mechanism to deploy APM Kerberos with connection-based auth behavior. APM NTLM is the only WIA method that currently supports connection-based auth (ability to persist on the authenticated user). Kerberos and Basic persist on the source IP, which is probelematic in NAT environments. This solution uses a sideband access policy evaluation to validate Kerberos credentials against a directory service, and requires the client to pass a valid authorization header in every request. The solution is optimized to query the directory service once for an authenticated user (and within expiry time).
sslo-custom-url-category-update-rest
This is a simple script to remotely update F5/SSLO custom URL categories
sslo-dns-over-https-detection
Set of iRule tools to integrate with SSL Orchestrator for DNS-over-HTTPS detection
sslo-sni-library-rule
A PROC iRuel function to retrieve the Server Name Indication (SNI) value from TLS Client Hello.
sslo_nuke_delete
A small Bash utility to completely remove all SSL Orchestrator configurations and objects.