Unknown CA error for VIP that is doing SSL offloading on LTM
Website configured to go through LTM. SSL offloading handled by LTM. When accessing the site from an ipad gets unknown CA error. Packet capture from LTM shows the client (ipad) initiates the Client hello, server (LTM) responds back with server hello then sends certificate. Ipad says Unknown CA. The certificate is issued by an intermediate cert. I imported the intermediate cert into the Trusted Device Certs list but that didn't make a difference. The root cert shouldn't have to be added to the Trusted list does it? Both the intermediate and root certs are installed on the ipad. And any other site that uses a cert issued by the SAME intermediate certs works when SSL offloading is done on the server. the ONLY site that is doing the SSL offloading on the LTM is not working so there has to be something I'm missing on the LTM. Please help!