Forum Discussion

Nimbostratus

Feb 24, 2020

Does server ssl profile check a web-server certificate validity ?

Hi :) I would like to know if a self created ssl server profile can check if some web-servers pool have valid certificate. I have a full proxy, client side works properly and server side also ...

Cirrostratus

Feb 24, 2020

Hi Eric,

It depends on what type SSL certificates your web servers are using.

1) if certificates are signed by a public CA, then use following option to validate the certificates.

Trusted Certificate Authorities:: Uses the ca-bundle.crt file, which contains all well-known public certificate authority (CA) certificates, for server-side processing.

2) if certificates are signed by a Internal CA, then import CA bundle for your internal CA including all chain certs and use it as Trusted Certificate Authority.

Hope this helps,

Nag

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Does server ssl profile check a web-server certificate validity ?

Recent Discussions

DEVICE-0202 Error while adding rSeries as a provider in CM

BigIP LTM update from v16 to v17

Foot Trooper Beneficios

Troubleshooting SSL Connections

Reclaim disk space for BIG-IP tenants running on rSeries systems

Related Content

POC: Validate JWT with iRule

Automating ACMEv2 Certificate Management on BIG-IP

Re: Management Certificate

Automate Let's Encrypt Certificates on BIG-IP

Validate Certificate Common Name and Revocation Status

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS