Activate F5 product registration key
Verify the proper operation of your BIG-IP system
Get up to speed with free self-paced courses
Join the community of 300,000+ technical peers
Advance your career with F5 Certification
Product Manuals and Release notes
If you currently use an HTTP virtual server, the connection to such a server is no longer supported due to Apple Transport Security (ATS) changes. Reconfigure the virtual server to use HTTPS.
Because of Apple Transport Security changes, HTTPS requires the strongest TLS configuration (TLS 1.2 and PFS cipher suites). You may need to change the server certificate and the cipher settings in the clientssl profile to meet security requirements. All authentication ndpoints should comply with Apple's ATS requirements and use HTTPS TLS connections that comply with the following best practices:
The following cipher suites are supported:
If you use a virtual server for Per-App VPN connections, the Application Tunnels (Java & Per-App VPN) option is no longer required for Per-App VPN connections. However, this option does not need to be disabled. You can leave this setting enabled if you support both 2.1.x and 3.x clients on the same virtual server.