Forum Discussion

Cirrostratus

Dec 15, 2011

Managing SSL Certificate Bundles

We are about changing SSL vendors, and it appears their root is already in the build-in "ca-bundle". However, their intermediates are not. I wanted to get some feedback on the right way to manage thes...

config

design

Hamish

Cirrocumulus

Dec 15, 2011

That's exactly how I doit. Leave the CA bundle as it is, and add the intermediates in the chain.

To make a chain 'bundle' just cat all the intermediates into a single file and import. (Some of the intermediates have a chain of their own).

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Managing SSL Certificate Bundles

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Managing iRules configuration

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

Problem with sending BotDefense logs to remote server

ASM/AWAF declarative policy

Related Content

Automating Certificate Management on F5 BIG-IP

Automating ACMEv2 Certificate Management on BIG-IP

Certificate Automation for BIG-IP using CyberArk Certificate Manager, Self-Hosted

Re: Management Certificate

Creating, Importing and Assigning a CA Certificate Bundle

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS