HTTPS with chain ca BIG-IP Next AS3 Example DeclarationΒΆ

HTTPS service configuration with chain ca

{
     "class": "ADC",
     "id": "id-https-chain-ca-bundle",
     "schemaVersion": "3.0.0",
     "mytenant": {
       "class": "Tenant",
       "myapp": {
         "class": "Application",
         "my_ca_bundle": {
           "class": "CA_Bundle",
           "bundle": {
             "cm": "app-cert-01"
           }
         },
         "my_certificate": {
           "class": "Certificate",
           "certificate": {
             "cm": "app-cert-01"
           },
           "privateKey": {
             "cm": "app-cert-01"
           },
           "chainCA": {
             "use": "my_ca_bundle"
           }
         },
         "my_pool": {
           "class": "Pool",
           "loadBalancingMode": "least-connections-member",
           "members": [
             {
               "serverAddresses": [
                 "198.18.10.10"
               ],
               "servicePort": 443
             }
           ],
           "monitors": [
             "https"
           ]
         },
         "my_service": {
           "class": "Service_HTTPS",
           "clientTLS": "my_tls_client",
           "pool": "my_pool",
           "serverTLS": "my_tls_server",
           "virtualAddresses": [
             "198.18.1.10"
           ],
           "virtualPort": 443
         },
         "my_tls_client": {
           "class": "TLS_Client",
           "ciphers": "RSA",
           "tls1_1Enabled": false,
           "tls1_2Enabled": true,
           "tls1_3Enabled": true
         },
         "my_tls_server": {
           "class": "TLS_Server",
           "certificates": [
             {
               "certificate": "my_certificate"
             }
           ],
           "ciphers": "RSA",
           "tls1_1Enabled": false,
           "tls1_2Enabled": true,
           "tls1_3Enabled": true
         }
       }
     }
   }