SSL certificate using F5 with MS Exchange

Question

I want to buy an SSL certificate from Certificate Authority website. Traffic from client to F5 is https and from F5 to CAS server of MS Exchange is also HTTPS. Should i order a certificate with SAN portion. F5 VIP in Comman Name and CAS server URL in SAN. I am right?&nbsp;
Right now i have put exchange previous certificate which has CAS server URL in CN in my client profile. But VIP is different from CAS server URL. Could this be the reason i am unable to make it work through RPC (outlook) but OWA is working fine.&nbsp;

nathe · Answer

When you use the BIG-IP to do SSL bridging for any application i.e. terminate ssl and then re-encrypt, you only need a certificate to match the host name in the client ssl profile - as this does the termination. The certificate on the backend can be an internal PKI certificate if you choose.&nbsp;
Hope this helps,&nbsp;
N&nbsp;

Forum Discussion

SSL certificate using F5 with MS Exchange

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

Updating SSL Certificates on BIG-IP using REST API

Automating Certificate Management on F5 BIG-IP

Automating ACMEv2 Certificate Management on BIG-IP

Use Kubernetes Cert-Manager to Maintain Let's Encrypt Certificates

decrypted tcpdump capture without using an iRule and without using tshark

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS