ebathaei_188323
Feb 17, 2016Nimbostratus
AWS Cloud HSM with TLS SNI feature - multiple HTTPs on one IP
Hi Guys,
We are implementing F5 LTM VEs v11.6 and v12.0 in AWS, and we are going to use CloudHSM for our key management.
We also have a requirement to terminate multiple HTTPS sites on one IP and for this we are considering to use the TLS SNI feature/SAN (Not Wildcard SSL!)
From F5 documentations, it seems not possible to achieve both CLoudHSM + TLS SNI (below)
The certificate and key pairs for each of the HTTPS sites must be hosted on the virtual server.
Above prerequisite states that TLS SNI is not possible, as the keys need to be on Virtual Server/F5 Box, but in our case it will be on AWS CLoudHSM.
Any ideas how to do this?
Cheers