Upload a default SSL certificate
You can set a domain-wide default SSL client certificate for a domain by uploading an SSL certificate to the domain. Any liveness tests using the secure protocols use the default certification, unless they are overridden by a liveness test specifying its own certification.
Before you begin
certificate is not valid PEM format
The domain must have Edit scope access to perform this procedure.
- On the Traffic Management Domains, select the domain that you want to revise. The Edit Domain Settings page appears.
- Click the Settings tab to show the domain's settings. Note the Default SSL Certificate text and Manage Default SSL Client Certificate button at the bottom of the page.
Click Manage Default SSL Client
Certificate. A new window opens displaying information to manage
the certificate upload.
If the domain does not have a default certificate set, then the Certificate Status indicates that the "SSL Client Certificate is not currently set."
To upload a PEM formatted
certificate file, click Choose File. If
Subject and Expires fields appear under the Certificate Status heading then the
upload is successful.
If the certificate has not expired, a Clear button appears under the status and the Save button is enabled.If the certificate has expired, a message appears indicating that status.Note: Expired certificates are not allowed.
If you want to remove the SSL certificate, click Clear.
Click Cancel to return to the Settings tab.
Click Save if the certificate information is
Clicking the Save button will display a green banner with the text "The action has been completed." at the top of the page. You will also see green text that reads "Default SSL Certificate has been modified" next to the Manage Default SSL Client Certificate button.
- Click Add to Change List and then click Review Change List.
Review the Change List Dialog
changes, validate them, add a required comment, and click Activate Domain
to save them.
See Change List Detail Dialog for more information.