I have a server with 1024-bit certificate and i need to migrate to 2048 bit certificate. Can i use the TLS SNI feature in version 11.2 to help in this migration?
I am wondering if I put my 2048 bit certificate (with TLS SNI ) as the first SSL profile in my VS, and have the 1024-bit in the failback ssl profile.
Can I use the same DNS name for both certificates?
Even if it works, I am worried that some of the clients may not like the extra SSL SNI negotiation going on the LTM. Has anyone come across failures where some clients could not connect, especially that I am using some dumb terminals as clients ?
thanks