Forum Discussion
CirrusTMOS 14.x.x iApp Templates
CirrusI was able to find a fix for my issues by using the following:
set is_v13_1 [iapp_tmos_version >= 13.1]
#Creating new Client SSL Profile
set client_ssl [iapp_conf create ltm profile client-ssl ${app}_c-ssl\
defaults-from $::ssl__parent \
[expr { $is_v13_1 ? "cert-key-chain add \{ default \{" : "" }] \
key $::ssl__key \
cert $::ssl__cert \
chain [expr { [iapp_is ::ssl__chain $::DO_NOT_USE_ANSWER] ? "none" : $::ssl__chain }] \
[expr { $is_v13_1 ? "\}\}" : "" }] \ ]
...our full set of client SSL profile setup looks like this:
set is_v13_1 [iapp_tmos_version >= 13.1]
#################################
# Client SSL Profile Setup
#################################
if { ([iapp_is ::application__ssl_option "bridge"]) || ([iapp_is ::application__ssl_option "offload"]) } {
if { [iapp_is ::ssl__client_ssl_profile $::CREATE_NEW_ANSWER] } {
#Creating new Client SSL Profile
set client_ssl [iapp_conf create ltm profile client-ssl ${app}_c-ssl\
defaults-from $::ssl__parent \
[expr { $is_v13_1 ? "cert-key-chain add \{ default \{" : "" }] \
key $::ssl__key \
cert $::ssl__cert \
chain [expr { [iapp_is ::ssl__chain $::DO_NOT_USE_ANSWER] ? "none" : $::ssl__chain }] \
[expr { $is_v13_1 ? "\}\}" : "" }] \ ]
} else {
#Using existing Client SSL Profile
set client_ssl $::ssl__client_ssl_profile
}
} else {
set client_ssl "none"
}
if { $client_ssl == "none" } {
set vs_clientssl " "
} else {
set vs_clientssl "$client_ssl \{ context clientside \} "