Foundry Server Iron SSL Management

Posted on 4:06 PM by Bharathvn

Here is the example how to import SSL Certificate to Foundry Server iron

Login(telnet) to Foundry load balancer and enter sh config

you will find as mentioned below

ssl profile public_ssl
keypair-file public_key09
certificate-file public_cert09
cipher-suite all-cipher-suites
enable-certificate-chaining
session-cache off

Make note of existing keypair and Certificate file and logon to Apache server or Linux server where Certificate located

eg, in my case i have my cert at /opt/prikey.key and servercrt.crt

scp /opt/prikey.key root@x.x.x.x(foundry ip):sslkeypair:prikey.key:pem

scp /opt/servercrt.crt root@x.x.x.x(foundry ip):sslcert:servercrt.crt:pem

Verify file whether uploaded to foundry by using below command

sh ssl key*

Sh ssl Cert*

Then, unbind the existing SSL to bind new uploaded cert


server virtual public_ssl X.X.X.X
port default disable
port http
port ssl sticky
no port ssl ssl-terminate
no bind ssl server_real http server_real http


end

write mem


Update SSL Profile

ssl profile public_ssl
keypair-file prikey.key
certificate-file servercrt.crt
cipher-suite all-cipher-suites
enable-certificate-chaining
session-cache off

Again bind Virtual server to the profile public_ssl

server virtual public_ssl X.X.X.X
port default disable
port http
port ssl sticky
port ssl ssl-terminate
bind ssl server_real http server_real http

end

Write mem

you are done!