SERVER_CONNECTED serverside SSL profile select

I have unencrypted traffic coming into a virtual server. Through an iRule I need to send specific traffic to a server pool with SSL encryption. Here is what I have:

11.5.3 HF 2

when HTTP_REQUEST {

switch -GLOB [HTTP::path] {

"some_uri/*" {

set url [HTTP::uri]

HTTP::header replace "Host" "https://something.somethingelse.com"

set environment "doas"

HTTP::uri "/Layer7SSO$url"

SSL::enable serverside

pool apool

}

}

when SERVER_CONNECTED {

if { $environment eq "doas" } {

SSL::profile serverside_sslprofile

}

}

ltm profile server-ssl serverside_sslprofile {

app-service none

authenticate always

ca-file doas-cert-chain.crt

defaults-from serverssl

peer-cert-mode require

}

Here is what I am seeing in the ltm log:

01220001:3: TCL error: /Common/my_iRule - Operation not supported (line 1) (line 1) invoked from within "SSL::profile serverside_sslprofile"

I also tried the LB_SELECTED event and that gave the same error. Any thoughts? Thanks!