We utilize F5 load balancer to generate CSR and implement Entrust SSL certificates across all subdomains within our infra. We're exploring the possibility of deploying a wildcard SSL certificate for a domain and its associated subdomains. ltm version is 14.1.5 If feasible, we seek guidance on the process of importing and deploying it within F5.

You should be able to generate a key and CSR using the following. Please keep in mind that you need to fill out the pieces of the configuration file so that it creates it appropriately for your purpose. The configuration file, for this example, should be named wildcard.example.com.cnf. [ req ] default_bits = 2048 distinguished_name = req_distinguished_name req_extensions = req_ext [ req_distinguished_name ] countryName = Country Name (2 letter code) stateOrProvinceName = State or Province Name (full name) localityName = Locality Name (eg, city) organizationName = Organization Name (eg, company) commonName = *.example.com [ req_ext ] subjectAltName = @alt_names [alt_names] DNS.1 = *.example.com DNS.2 = (additional_FQDN) DNS.3 = (additional_FQDN) DNS.4 = (additional_FQDN)openssl req -new -config wildcard.example.com.cnf -keyout wildcard.example.com.key -out wildcard.example.com.csr When you run the above command from the F5 cli it should prompt you to setup a new passphrase, which you should configure, this will be used to encrypt the key and keep it secure. You can take the .csr file and give that to your CA who can then provide you an SSL certificate to match your key.

Wildcard SSL Certificate Deployment on F5 LTM

Forum Discussion

Recent Discussions

Internal F5 Loopback To solve LNA Issue
May 07, 2026
notbuyinit
VIP control across data centers - how to ensure only 1 VIP is up at a time?
May 07, 2026
daboochmeister3
migrate from serie I to R. Cluster LTM-GTM
May 07, 2026
SuppEsp_AX
Errors with AS3 3.56.0 with F5 17.5.1.6
May 07, 2026
Juergen_Mang
syslog over tcp and define management IP as source
May 06, 2026
ecoumesh_264424

Forum Discussion

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

IPv8 Would Fix My Routing Tables. It Will Never Ship.

Recent Discussions

Internal F5 Loopback To solve LNA Issue

VIP control across data centers - how to ensure only 1 VIP is up at a time?

migrate from serie I to R. Cluster LTM-GTM

Errors with AS3 3.56.0 with F5 17.5.1.6

syslog over tcp and define management IP as source

Related Content

Where are F5's archived deployment guides?

Automating Certificate Management on F5 BIG-IP

Wildcard Certificate

Certificate Automation for BIG-IP using CyberArk Certificate Manager, Self-Hosted

BIG-IP Next for Kubernetes CNFs deployment walkthrough