Forum Discussion
Jake_39981
Mar 05, 2012Nimbostratus
Chain Certificates / Client SSL Profile
We have one Virtual Server and client SSL profile shared by
multiple clients coming in. One client is presenting a client cert signed by an
intermediary "VeriSign Class 3 Extended Validation SSL CA" ...
I agree with hoolio.
I have the same configuration, but I choose to keep the two Verisign intermediate certs in their own bundle. So I created a cert called verisign-intermediate-ca, and imported both the Primary and Secondary intermediary cert into it. I find this easier to manage than appending it into the same cert. That way if I ever need to update the intermediaries, I don't have to touch every SSL cert. Or when I renew an SSL cert, I don't have to worry about including the Intermediary.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects