1 VIP 3 URL 3SSL Certs all on port 443 is it possible?

Question

all,&nbsp;
i need help, i have a scenerior... &nbsp;
1 VIP 3 URL 3 Cert all on tcp port 443. how do i get the certs to allighn with the different URL? i read up on the SNI and makes sence but i have 3 different name so im still confused. Is it possible with my scenerio at all?&nbsp;
Thanks..and appreciate all reply.&nbsp;

nathe · Answer

SNI basically entails creating a Client SSL profile per hostname, perhaps, which has 3 different certificates. You can then apply the three client SSL profiles to the Virtual Server configuration. If a client supports SNI then the first part of the communication will be to discover the hostname and associated client ssl profile. once this is done the ssl handshake can continue as normal.&nbsp;
By the way, you will need to configure one client SSL profile to be the default one (in the profile itself), just in case hostnames don't match the certificates. I believe you also need to enter in the hostname into the Server Name field too. Again in the client ssl profile.&nbsp;
See sol13452&nbsp;
Hope this helps,&nbsp;
N&nbsp;

cylinh_171509 · Answer

Thanks for the quick reply, this has fixed my problem. Was my lack of understanding on base sslprofile&nbsp;

nathe · Answer

No probs. Mark up if happy

Forum Discussion

1 VIP 3 URL 3SSL Certs all on port 443 is it possible?

3 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 is Almost Here

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

VIP in https that redirect to another vip in https

2026 301a exam

F5OS login with admin/root failed via console

Related Content

Integrating Hashicorp Vault with Cert Manager and F5 NGINX Ingress Controller

Use Kubernetes Cert-Manager to Maintain Let's Encrypt Certificates

SSL Cert expiration Tracker

TCL Error possibly causing TCP Resets?

SSL-Cert

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS