How do I configure multiple intermediate certificates?

Question

I'm having a problem with intermediate certificates.  
&nbsp;    
&nbsp;  I've followed the steps located here without error: https://support.f5.com/kb/en-us/solutions/public/6000/400/sol6401.html?sr=820899. However, the cert chain is still not transmitted.   
&nbsp;    
&nbsp;  The only difference that might be a problem is that we have multiple intermediate certificates in our chain. Those have been imported into a "certificate bundle". Which is what's being used in the "chain" property of the client ssl profile.  
&nbsp;    
&nbsp;  Is there a problem with using a bundle as an intermediate and if so how do you configure multiple intermediate certificates?  
&nbsp;    
&nbsp;  Thanks,  
&nbsp;  Chris

chris_103315 · Answer

I was able to get this working. There must have been something wrong with one of the certs in the intermediate chain or the name "intermediate-ca" is reserved in some way.  
&nbsp;  
&nbsp; I redownloaded each of the certs, exported to base 64, reconstructed the intermediate chain file and imported it as a new Cert Bundle.  
&nbsp;  
&nbsp; There is nothing different from the new chain file and the old one, except that I named the new chain file something other than intermediate-ca.

Forum Discussion

How do I configure multiple intermediate certificates?

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

Certificate Expiry Email alert configuration

Automating Certificate Management on F5 BIG-IP

Intermediate iRules: Data-Groups

Intermediate iRules: Handling Strings

Intermediate iRules: Handling Lists

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS