api.ced.sa
Hello, i have enabled Client Certificate Verification WAF rule on api.ced.sa but i want to specific hostname / website address i.e test.ced.sa able to bypass / skip this rule.
Could you please confirm where do you enabled the “Client Certificate Verification WAF rule”?
The feature you are referring to might not be a WAF rule but rather part of the mTLS (Mutual TLS) authentication settings or API Shield.
If you’re looking to bypass a specific hostname (e.g, test.ced.sa), you can create a Custom Rule under Rules > Custom Rules to exclude the specified hostname from the Client Certificate Verification process. If mTLS or API Shield is in use, you may need to adjust the Access Control policies or Custom Rules to skip enforcement based on the hostname.
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.