This document describes how to apply multiple certificates on an Email Security Appliance (ESA) and assign them to different interfaces or listeners.
Is it possible to apply multiple certificates on an ESA and assign them to different interfaces or listeners?
On the Cisco ESA, you can install multiple certificates and assign them per listener. You can assign a certificate to an individual public or private listener for TLS connections using either the GUI: Network > Listeners or the CLI: listenerconfig > edit > certificate.
To assign a TLS certificate via the GUI, select the certificate you want in the Certificate section when creating or editing a listener and then submit and commit your changes.
To assign a certificate to a listener via the CLI, follow these steps:
Use the listenerconfig > edit command to choose a listener you want to configure.
Use the certificate command to see the available certificates.
Choose the certificate you want to assign to the listener when prompted.
When you are finished configuring the listener, issue the commit command to enable the changes.