Forum Discussion
NimbostratusIIS and SSL Profile Handshake failure Help!!
Hey Folks , Im currently running into an issue where I'm trying to upload a IIS cert ex. wildcard.pfx but was renamed to .crt so the f5 can accepted it.So when looking at the cert inside the f5 it doesn't include the chain. (I've tried with chain as well) this includes a private key.
After this is done, I created my profiles client and server that includes the cert I just uploaded. when adding these profiles to the VIP, and enable my Irule for URL_ReWrite (which looks for a specific pool) we keep seeing a 403.16 IIS error. ErrorCode The certificate is not valid for the requested usage. (0x800b0110) IIS does contain the same key material as the F5. I cannot get rid of this error msg. Please help.
when CLIENT_ACCEPTED { Save the name of the VS default pool
set default_pool [LB::server pool] }when HTTP_REQUEST { if {[string tolower [HTTP::uri]] starts_with "/cardonfile"} { Update the location in the header, change SSL "Server" profiles and target the correct pool HTTP::header replace Location "[HTTP::uri]"
SSL::session invalidate set cmd "SSL::profile /Common/XServer" eval $cmd pool AIB_115_CardOnFile SSL::renegotiate } else { pool $default_pool } }text1 Reply
julian_mata_164when CLIENT_ACCEPTED { Save the name of the VS default pool set default_pool [LB::server pool] } when HTTP_REQUEST { if {[string tolower [HTTP::uri]] starts_with "/cardonfile"} { Update the location in the header, change SSL "Server" profiles and target the correct pool HTTP::header replace Location "[HTTP::uri]" SSL::session invalidate set cmd "SSL::profile /Common/AprivaServer" eval $cmd pool AIB_115_CardOnFile SSL::renegotiate } else { pool $default_pool } }
