You need to have a correct certificate for each domain name or wilecard certificate. E.g. you have web sites: my.domain.net, yours.domain.net , test.nice.com. So on all ACEs you need to have correct certificates for each domain (or if wilecard - one for domain *.domain.net, and one for *.nice.com). These certificates can be the same or can be different, the only things wich matters is for what domain they are issued.
You can have the same keys and certificates on all your ACEs and actually, from manageability and scalability point of view, it seems to be the best approach.
The purpose of certificate is to ensure that site you're connecting to is really site you expect it to be. Thus certificate is connected to DNS name of the site. Browser checks if domain name in certificate corresponds to name you use to access this site. If no - browser will show you a Security alert. You can ignore it and continue and it will work.
So, to have everything working nice you need to have a different certificate for each domain name or have a wilecard certificate.
E.g. you have 3 VIPs on ACE : 22.214.171.124 , 126.96.36.199, 188.8.131.52 and DNS condifured like :
nice.domain.net = 184.108.40.206
bad.domain.net = 220.127.116.11
test.test.com = 18.104.22.168
so in this case you need either have 3 certificates for each domain name or one certificate for test.test.com and one wilecard for *.domain.net. They can be provided by server team, depends on scope of responsibilities you have in your organization.
However you can configure ACE with any certificate , it will work, just client will see Security alert in his browser that certificate doesn't correspond to site.
Introduction This article will help you understand the steps on how to
download the UCS licenses from the Cisco Systems website and then
installing it on the UCS. The redacted (blue lines) just covers up
certain numbers for privacy please do not take them...
Introduction This article will help you understand and educate the
customer on how to clear their "expired licenses"
(license-graceperiod-expired) from their UCS-M. If a customer just
purchased a license and needs a step by step guide on how to download
==================== VIC FNIC driver does not support Virtual Volumes (
second level LUN ID ) An enhancement request has been created to track
this feature - CSCux64473 UPDATE - 12-14-2016 We made some traction on
the enhancement request - The Fix is in t...