Add more to the above,

The certificate now comes in two parts (chained certs!!0.

I've been told to merge the two together and configure as one cert.

I need to confirm merged file is usable in ACE? And merging format is as below.

-----BEGIN CERTIFICATE-----

bla bla=

-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----

bla bla=

-----END CERTIFICATE-----

Is any one able to advice please?

SS

If you created CSR on ACE then you must have created the keypair first. Creating that Keypair makes Public & Private Key Available to CA.

When you get Server cert back from CA, you just need to import certs. If you have a certificate chain then import all the certs individually in the chain

for example if two certs in chain are Intermediate.pem & xyz.pem then import them individually using

Crypto import terminal Intermediate.pem

Crypto import terminal xyz.pem

then create a chain-group with both certs as member

Crypto chaingroup xyz-chain

Cert Intermediate.pem

Cert xyz.pem

and then call it in the SSL service

ssl-proxy service SSL_SERVICE

key xyz.com-key.pem

cert xyz.pem

chaingroup xyz-chain

and then finally call it in the

class xyz-https

loadbalance vip inservice

loadbalance policy xyz-policy

loadbalance vip icmp-reply active

ssl-proxy server SSL_SERVICE

HTH

Syed

Syed,

Very helpfull info.

I have certs

I have server certs

and possibly ican also use a recognised CA name

Should there be an order for configuring what is listed first in the chain group. Asking this because, server team advice me that in one text file they include the certs and then the server certs.

Thank you SS