SAN Certificate Troubleshooting

Question

Hello,&nbsp;
I have a SAN Certificate and installed to BIG IP TL2000.The certificate was imported  as pfx but i also tried to convert and installed as .pem file to BIG IP.
The problem is i can not use the Client SSL profile for this certificate.
The certificate has 3 sundomains as 1.xyz.com,2.xyz.com,3.xyz.com&nbsp;
Any help appreciated.&nbsp;
Thank You&nbsp;

chase_abbott · Answer

This shouldn't be an issue.  If the cert is SAN/Wildcard it can work fine within a single client ssl profile.  You can choose how to segregate the traffic:&nbsp;
3 separate virtual servers using the same client ssl prof1 virtual with 3 DNS A records pointing to it.  Use an iRule to segregate the sites and pools with a switch statement.
The PFX should import the cert/key just fine.  I would import the intermediary certificate separately for cert chain linking.&nbsp;

Forum Discussion

SAN Certificate Troubleshooting

1 Reply

Recent Discussions

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

Related Content

AppWorld 2024 in San Jose

How to Troubleshoot SNI

Appworld 2024 -San Jose

CNAME redirection to GTM certificate SAN requirement

F5 CIS, TLS Extensions, and troubleshooting