Forum Discussion

Nimbostratus

Mar 31, 2017

SAN Certificate Troubleshooting

Hello, I have a SAN Certificate and installed to BIG IP TL2000.The certificate was imported as pfx but i also tried to convert and installed as .pem file to BIG IP. The problem is i can not use...

Admin

Mar 31, 2017

This shouldn't be an issue. If the cert is SAN/Wildcard it can work fine within a single client ssl profile. You can choose how to segregate the traffic:

3 separate virtual servers using the same client ssl prof
1 virtual with 3 DNS A records pointing to it. Use an iRule to segregate the sites and pools with a switch statement.

The PFX should import the cert/key just fine. I would import the intermediary certificate separately for cert chain linking.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SAN Certificate Troubleshooting

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Terraform AS3 code for GTM Only.

BIG-IP device fails to install node-inspector

WAF Block Request

AST Configuration Assistance

F5 HA deployment in Azure using Azure Load Balancer

Related Content

Automating Certificate Management on F5 BIG-IP

How to Troubleshoot SNI

Slack Mutual TLS Recipe: Adding X-Client-Certificate-SAN header from client certificate

Access Troubleshooting: BIG-IP APM OIDC integration

Virtual-wire Configuration and Troubleshooting

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS