010717e1:3: Client SSL profile cannot contain more than one set of same certificate/key type.

When I try to list the client-ssl certificates I get a not found error. I assume this is because the configuration is not loaded (because it fails).

This is the client-ssl parts of the big-ip.config file.

Can anyone tell me whats wrong with it please?

Bob

ltm profile client-ssl /Common/Exchange-2013.app/Exchange-2013_clientssl { app-service /Common/Exchange-2013.app/Exchange-2013 cert /Common/my.crt cert-key-chain { my_my { app-service /Common/Exchange-2013.app/Exchange-2013 cert /Common/my.crt chain /Common/my.crt key /Common/my.key } } defaults-from /Common/clientssl key /Common/my.key } ltm profile client-ssl /Common/clientssl { alert-timeout 10 allow-non-ssl disabled app-service none authenticate once authenticate-depth 9 ca-file none cache-size 262144 cache-timeout 3600 cert /Common/my.crt cert-extension-includes { basic-constraints subject-alternative-name } cert-key-chain { my { cert /Common/my.crt chain /Common/my.crt key /Common/my.key } } cert-lifespan 30 cert-lookup-by-ipaddr-port disabled chain /Common/my.crt ciphers DEFAULT client-cert-ca none crl-file none generic-alert enabled handshake-timeout 10 key /Common/my.key mod-ssl-methods disabled mode enabled options { dont-insert-empty-fragments } passphrase none peer-cert-mode ignore proxy-ca-cert none proxy-ca-key none proxy-ssl disabled renegotiate-max-record-delay indefinite renegotiate-period indefinite renegotiate-size indefinite renegotiation enabled retain-certificate true secure-renegotiation require server-name none session-ticket disabled sni-default false sni-require false ssl-forward-proxy disabled ssl-forward-proxy-bypass disabled ssl-sign-hash any strict-resume disabled unclean-shutdown enabled } ltm profile client-ssl /Common/wts-gateway-client-ssl { app-service none cert-key-chain { my { cert /Common/my.crt chain /Common/my.crt key /Common/my.key } } defaults-from /Common/clientssl inherit-certkeychain true }