SteelHead SaaS Intermediate CA certificate - Customer Hosted CA Enviroment

Solution Number:
S31657
Last Modified:
2025-03-05
Issue
In a SteelHead SaaS environment where the Signing CA is Customer Hosted type, the SaaS services proxy certificates are signed by the customers own CA.

In such an environment the customer may have a root CA with Intermediate CA's that sign the CSR for the SaaS proxy certs. Ths signed Proxy certificates are then subsequently uploaded back to the Portal after being signed by the Intermediate CA.

Example:

               Root Ca
                    ||
          Intermediate CA
                    ||
Proxy Certificate *.office365.com
 
Solution
In such cases as the example above, this design is a Supported solution. During SSL optimization the client will receive both the intermediate and proxy certificate from the client side Steelhead. 
Attachments
NOTICE: Riverbed® product names have changed. Please refer to the Product List for a complete list of product names.
Can't find an answer? Create a case