Forum Discussion

Altostratus

8 years ago

010717e1:3: Client SSL profile cannot contain more than one set of same certificate/key type.

and you cannot associate more than one set of the same certificate/key pair type with the profile https://support.f5.com/csp/article/K15062 What does the above mean exactly...The artical sa...

application delivery

LTM

Kevin_K_51432

Historic F5 Account

8 years ago

Greetings Domai,

Would this sentence make more sense?

"Starting in BIG-IP 11.5.0, you can associate multiple Secure Sockets Layer (SSL) certificate/key pairs of different algorithm types with a single SSL profile."

I can't think of an instance where you would want multiple of the same in a single profile and believe this change came about as ECC doesn't have a native key exchange, so must use additional RSA (two types in one profile).

Hope this is helpful!

Kevin

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

010717e1:3: Client SSL profile cannot contain more than one set of same certificate/key type.

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

How to Verify config before loading to F5

Related Content

F5 Venafi Solution for Enterprise Key and Certificate Management

Blindfold key for API request to replace TLS certificate

Automate import of SSL Certificate, Key & CRL from BIG-IP to BIG-IQ

Upload Local Certificates and Keys

Verifying Multiple Certificate Key Pairs

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS