I get what you are saying. I think we had a misunderstanding. Yes, I created a VS applied the AP and the client and server profiles along with the irule.
ltm virtual /Common/vs_CAC_test {
description "Testing CAC and AD authn"
destination /Common/x.x.20.254:443
ip-protocol tcp
mask 255.255.255.255
profiles {
/Common/ap_simpleLogon { }
/Common/apm-default-serverssl {
context serverside
}
/Common/clientssl-eis2-lbtest {
context clientside
}
/Common/http { }
/Common/rba { }
/Common/tcp { }
/Common/websso { }
}
rules {
/Common/irule_LTM_access
}
source 0.0.0.0/0
translate-address enabled
translate-port enabled
}