Chain certificate in F5 load balancer

Hi Venkat,

Can you elaborate on the query you've got, your question isn't too clear? Anyway, if you want to know where you can configure a chain certificate then it's in the SSL Profile (client or server) that you assign to a VS. After having imported the chain certificate into the GUI of course.

Hope this gives you some clue.

N

procedure for chain certificate creation and Validation and instlallation

Venkat, can I suggest a) you provide a lot more detail to enable us to help you and b) word your request in a less demanding way please.

We procured wildcard certificate from Thawate and Thawate suggested we download the two intermediate certificates for the wildcard cert to work. When I try to apply the wildcard cert in the SSL client profile created for my application and try to sync the two boxes, I see sync fail and an error that the private key is not valid. I tried creating a chain certificate using the SOL13302, but when I try to verify the chain certificate, I receive error.

You shouldn't technically need the intermediate certs or a chain if you're just doing SSL offload. You do, however, need the private key associated with the wildcard cert, both of which should be assigned in your client SSL profile. You should only need the intermediate certs if you're validating client certificates.

Try to sync your devices from active to standby. and tail log file located at /var/log/ltm and share error logs printed there. it will help to resolve error. looks like device certificate issue. which LTM version you are using?

You can also check and share logs when you load wildcard ssl key and then certificate on that key from same log file.