In a SteelHead SaaS environment where the Signing CA is Customer Hosted type, the SaaS services proxy certificates are signed by the customers own CA.
In such an environment the customer may have a root CA with Intermediate CA's that sign the CSR for the SaaS proxy certs. Ths signed Proxy certificates are then subsequently uploaded back to the Portal after being signed by the Intermediate CA.
Example:
Root Ca
||
Intermediate CA
||
Proxy Certificate *.office365.com
SteelHead SaaS Intermediate CA certificate - Customer Hosted CA Enviroment
Categories:
Solution Number:
S31657
Last Modified:
2017-12-12
Issue
Solution
In such cases as the example above, this design is a Supported solution. However it is necessary for the end SaaS clients browsers to have the Intermediate CA certficate installed.
The SaaS solution does not support having only the Root CA certificate in the client browser.
The SaaS solution does not support having only the Root CA certificate in the client browser.
Related Bugs
Attachments
Related Files
NOTICE: Riverbed® product names have changed. Please refer to the Product List for a complete list of product names.
Can't find an answer? Create a case