Forum Discussion

Dinesh3888's avatar
Icon for Nimbostratus rankNimbostratus
May 19, 2018

Irule creation



Need a help on irule i have a site when user hits this they have to be redirected to where as is our domain name.I have cert with FQDN So whenever user hits they are getting SSL error. Note:I cannot add aaa as SAN name to cert because this is external cert and we access this url both internal and external.


5 Replies

  • Hi,


    when the browser first requests , the browser :


    • open TCP connection
    • Initiate the TLS handshake with server name "aaa"
    • receive the browser with certificate
    • display SSL error, the user accept the SSL error
    • send request for
    • receive the redirect to

    you can create a certificate for aaa sign by your internal CA (imported in browsers trusted CA) and enable SNI


  • Thanks Piron. Do we need to import the private cert in all users browser?


    • Stanislas_Piro2's avatar
      Icon for Cumulonimbus rankCumulonimbus

      So I guess this certificate authority is already added as trusted CA on all AD computers.


      If it is, there is no more action to be done on computers.