currently moving from server-based certs to CSS/SSL based.
We have two sites, two CSS/SSL on each in ASR mode.
There are two real servers behind each SSL rule for load balancing.
The question becomes how many certificates do we need
for such design ?
For sure we need one per site, then on each site we have Active/Standby CSS's.
Do we need separate certificate for each CSS?
I dont think so, cause only one is active at the time.
I tested it with same certificate on both CSS's on one site, no problem.
The question is will it be ok for production ?
So total number would be 2 cert for such design (one per VIP) if we have one SSL rule per site, and 4 if we have 2 SSL rule per site - is it ok ?