Forum Discussion
2 Replies
Sort By
- Josiah_39459Historic F5 Account
Why do you need to install two certs on one vip? How will you select which cert to use on a given connection? Since Host (HTTP layer 7) is higher layer than SSL, you won't be able to access the host information to "switch" certificates until after the SSL handshake, which means you will always have untrusted connection errors in web browers.
Or do you actually have some implementation where you choose the cert based on client source ip?
- Alice_214810NimbostratusI can actually install two certificates at one VIP. To achieve this, one SSL client profile must be configured as default SNI and as for another profile, you need to define URL at server name parameter.