I have been thrust upon a Viprion running 11.3. I'm trying to understand what SSL certificates a particular virtual service (VS) is using. The VS is associated with an Exchange iApp. From reading the F5 doc about this iApp, one of the steps is to select a SSL certificate. More on that in a moment. The VS has a ClientSSL and ServerSSL profile configured. I can see quite clearly what certificates are configured for these profiles. That was the easy part. Getting back to the iApp. I'm using a corporate computer so I don't have a choice as to the browser I can use to surf to the F5. When clicking on the down-arrow menu for the SSL certificate, it's width is only so far and doesn't show the entire line of text. The Viprion has a number of certificates similarly labelled I can't tell which one it is just by glancing at it. With all of this, I have two questions:
Is there a CLI command to list how the iApp is configured? From the CLI I entered 'show running-config' and from the output I couldn't find the specific iApp config, just references to it.
Why do iApps need an SSL certificate configured if it's referencing a server and client SSL profile? I'm making this statement because when I view the the VS and scroll down to where the SSL Profiles are, there seems to be a linkage. I've attached an image to demonstrate what I'm referring to.
Thanks for your help.
Timothy- The iApp sets configuration only when the template is run. If changes are made using the UI or the CLI afterwords, they overwrite the iApp's config. iApps have a property called "strictness" that is designed to prevent this confusion, but strictness may be disabled, and often is. Anyway, in your case, you can trust the configuration that you see in the UI. Just be aware that if you run the iApp again, it will again overwrite with its version of the config. -Fred