Configure a SSL certificate in a VIP

Prerequisites

We need to have a valid certificate for the FQDN, its private key and the certificate of the CA that issued it.

Installation

Import the private key

• System -> Certificate Management -> Traffic Certificate Management -> SSL Certificate List -> Import

• Import Type = Key
• Key Name = symbolic name
• Key Source = private key or upload file

Import the certificate

• System -> Certificate Management -> Traffic Certificate Management -> SSL Certificate List -> Import

• Import Type = Certificate
• Certificate Name = symbolic name
• Certificate Source = certificate or upload file

Configuration

Create SSL profile

• Local Traffic -> Profiles -> SSL -> Client

• Name -> symbolic name
• Configuration -> Advanced
• Certificate Key Chain -> Custom

• Certificate -> certificate
• Key -> key
• Chain -> CA certificate

Apply SSL profile to the VIP

Local Traffic -> Virtual Servers -> Virtual Server List

Select the VIP.

Select the profile from the available list and add it to the selected list.