Problem with self-signed certificate

Hi F599,

Try below steps.

Here are a few steps you can follow to configure the F5 to ignore the untrusted self-signed certificate on the backend server and use the certificate you configured in the SSL profile:

1. Create a Client SSL Profile: This profile is applied to the client side of the connection (i.e., between the client and the F5 load balancer).
   • Go to Local Traffic > Profiles > SSL > Client.
   • Click on "Create" and configure the profile with the certificate and key you want to use.
   • Make sure you select the appropriate certificate and key that you have uploaded to the F5.
2. Create a Server SSL Profile: This profile is applied to the server side of the connection (i.e., between the F5 load balancer and the backend server).
   • Go to Local Traffic > Profiles > SSL > Server.
   • Click on "Create" and configure the profile.
   • In the "Server Authentication" section, set "Server Certificate" to "Ignore".
   • Ensure that "Chain" is set to "None" (unless you have a specific chain to validate).
   • Save the profile.
3. Apply SSL Profiles to Virtual Server:
   • Go to Local Traffic > Virtual Servers.
   • Select the virtual server that is handling the traffic.
   • Under the "Resources" tab, click on "SSL Profile (Client)" and select the Client SSL profile you created.
   • Click on "SSL Profile (Server)" and select the Server SSL profile you created.
   • Save and apply the changes. 
4. After applying these profiles, the F5 load balancer should terminate the SSL on the client side using the certificate you configured in the Client SSL profile, and then re-encrypt the traffic to the backend server while ignoring the untrusted self-signed certificate.