Posted By Michael Koyfman on 02/21/2012 10:39 PM
Who is your cert issued by? It is possible that clientside SSL profile on the BigIP is not chained correctly - if your certificate requires an intermediate certificate to be chained, some browsers/devices will give you untrusted warning because they don't have the right CA bundle/chain installed on them. I've seen issues where Windows devices would not complain of SSL, but mobile devices such as iPads would - thus I highly recommend verifying proper CA/Chain installed on the BigIP and the clientsideSSL profile.
The public cert is issued by Thawte. We've tried doing just the cert and also the entire chain. Both with the same result. I guess that is where my knowledge of certs ends...
Do you think it should be just cert or entire chain?