Forum Discussion
TeemuK
Altostratus
AltostratusAS3 - Create multiple client ssl profiles to a single virtual server.
Hi, I have a problem using AS3 to add multiple SSL client profiles to a virtual server. I don't wan't to use the bigip reference from /Common but instead just create and add multiple ssl client prof...
A default ssl profile is mandatory to accomdate the case when the server name does not match or when the client does not support SNI. This is by design
Nikoolayy1
MVP
MVPNice! I thought that you will need to use REST-API imperative calls to "/mgmt/tm/sys/file/ssl-cert" "https://{{big-ip}}/mgmt/tm/ltm/profile/client-ssl" to first import the SSL cert via API and then create the SSL profiles (or Ansible could have been easier to interact to the API the old not AS3 way as to create playbook with 3 tasks of importing the ssl/creating the profiles and using the AS3 with Ansible https://docs.ansible.com/ansible/latest/collections/f5networks/f5_modules/index.html / https://clouddocs.f5.com/products/orchestration/ansible/devel/f5_bigip/playbook_tutorial.html ) but your solution is much better!
Even in the docs your way is not given as under "Referencing multiple SSL profiles on a single virtual service" it is written "The SSL profiles must exist on the BIG-IP device."
Amine_KadimiMVP
MVPThis is a nice one to read: https://github.com/F5Networks/f5-appsvcs-extension/issues/201
Maybe the doc was not updated to reflect the outcome of this issue