When would I use serverssl profile instead of clientssl profile?
Hello,
Our default for our VS objects is clientssl profiles. We typically create both an HTTP and HTTPS object. Assign a HTTP->HTTPS redirect to the HTTP object and configure and assign a clientssl profile to the HTTPS object. We do not install SSL certs on the servers.
The two main reasons are to 1. offload https processing load at the LTM and 2) to simplify certificate management.
We now have a request to pass HTTPS to the end webapp server as a means to get the site to do something the developer seems to not be able to get it to do with code. (I don't think passing the HTTPS to the server is going to fix the issue).
I have considered that using a serverssl profile might provide the needed encryption to the webapp servers without passing the decryption processing overhead. HOWEVER, my reading this morning seems to indicate the decryption would still be done at the end-server and we'd still need certificates on the servers as well.
Can someone help me understand what scenario would serverssl profile be appropriate?
Thanks much!
Diane