NimbostratusHello, For the same LB VIP we have two names and I have to add the SSL profile for both the SAN name to the same VIP.
Could you please help me to know the configuration change required to add the two SSL profile to a VIP?
Regards, Thiyagu
NimbostratusYou don’t need to change the configuration of the VIP or ssl profile.
You need to add SAN while creating the ssl certificate. If the current certificate was signed by your internal certificate authority, create a new one. If it’s from third party vendor, generate a new CSR with SAN amd contact them. Let me know if it works.
-Harsha.
CumulonimbusHi Thiyagu,
If you want to assocaited 2 SSL profil to the same VS you can follow this steps.
So suppose you have this 2 ssl profil:
First of in your profil you have to set the same: - Ciphers (To begin let the 2 profil at Default). - Renegotiation will be checked on both profil. - try to set the same Parent Profile in both profil (clientssl for example).
Then in Profil A set "Server Name" at "myhost.mydomain.com"
And in profil B set "Server Name" at "*.mydomain2.com" and check "Default SSL Profile for SNI".
When you set 2 ssl profil or more you have to have an Default SSL Profile for SNI.
Regards
AltostratusHello Thiyagu,
You can achieve this by following the below link :
https://support.f5.com/csp/article/K13452
Please let me know if this helped you & mark it as an answer.
Regards,
Ajit
AltostratusHello Thiyagu,
Is your issue resolved now? Did the provided solution work for you? Please update.
Regards,
Ajit
NimbostratusHello Thiyagu,
You can achieve this by following the below link :
https://support.f5.com/csp/article/K13452
Please let me know if this helped you & mark it as an answer.
Regards,
Ajit
NimbostratusHello Thiyagu,
Is your issue resolved now? Did the provided solution work for you? Please update.
Regards,
Ajit