Forum Discussion
AltostratusAS3 - Create multiple client ssl profiles to a single virtual server.
A default ssl profile is mandatory to accomdate the case when the server name does not match or when the client does not support SNI. This is by design
MVPNice! I thought that you will need to use REST-API imperative calls to "/mgmt/tm/sys/file/ssl-cert" "https://{{big-ip}}/mgmt/tm/ltm/profile/client-ssl" to first import the SSL cert via API and then create the SSL profiles (or Ansible could have been easier to interact to the API the old not AS3 way as to create playbook with 3 tasks of importing the ssl/creating the profiles and using the AS3 with Ansible https://docs.ansible.com/ansible/latest/collections/f5networks/f5_modules/index.html / https://clouddocs.f5.com/products/orchestration/ansible/devel/f5_bigip/playbook_tutorial.html ) but your solution is much better!
Even in the docs your way is not given as under "Referencing multiple SSL profiles on a single virtual service" it is written "The SSL profiles must exist on the BIG-IP device."
MVPThis is a nice one to read: https://github.com/F5Networks/f5-appsvcs-extension/issues/201
Maybe the doc was not updated to reflect the outcome of this issue
