Forum Discussion
tarsier_90410
Nimbostratus
Nimbostratushelp with self-signed server-side ssl cert
I am not sure what I am doing wrong trying to get a server ssl cert installed on the BIGIP. The application requires (ie there is no way to disable) ssl for client connections. I would like to put the BIGIP in front of this app. So far I have:
Imported the ssl certificate into BIGIP and verified the properties match those displayed in a browser if I connect to the server directly.
Created a new Server SSL Profile with this certificate (all others defaulted off serverssl profile)
Attached the new Server SSL Profile to a virtual server with the appropriate pool, etc.
Thank you for any assistance!
tarsier_90410I should have added:
When connecting to the VS, after a delay I get the "connection interrupted" message from Firefox, and "Cannot find server" from IE.- tarsier_90410Sorry all, problem was the server route table, was not set with BIGIP as default.
hoolioCirrostratus
Good to hear you got it working. For future reference, LTM does not try to validate the server SSL certificate with the default server SSL profile. So you shouldn't need to import/install the cert unless you need to verify the server certificate. If the server requires LTM send a client cert, then you would need to create a new server SSL profile with the client cert imported and configured.
Aaron