BIG-IP GTM logs seeing false SNMP trap everyday about cert expiry when an SSL certificate still valid

Question

BIG-IP GTM logs seeing false SNMP trap everyday when an SSL certificate still valid&nbsp;
May 15 04:10:45 XXXXXXX alert big3d[8397]: 012b600f:1: SNMP_TRAP: SSL cert from IP ::xxxx:x.x.x.x:xxxx WILL EXPIRE on Jun  9 07:46:22 2017 GMT&nbsp;
SSL certificate '/config/ssl/ssl.crt/dtca-bundle.crt' has the expiration date Fri Jun 9 07:46:22 2017 from IP xxxx:x.x.x.x:xxxx( f5 Enterprise manager). But when we checked on the device , certificate are valid and will expiry on 2022.&nbsp;
Need to know if any related bug, why we seeing those false alerts. We have 3 GTMs, on all of them we see above false traps.&nbsp;
it seems quite opposite to article https://support.f5.com/csp/article/K14395&nbsp;

leonardo_souza · Answer

Have a look in this solution:&nbsp;
https://support.f5.com/csp/article/K15597&nbsp;
I don't agree with the idea here.
It should try to renew first, if fails, then alert the user.
Anyway, EM will be replaced by BIG-IQ, somewhere in the future.&nbsp;

Forum Discussion

BIG-IP GTM logs seeing false SNMP trap everyday about cert expiry when an SSL certificate still valid

Recent Discussions

irule to enable http/2 acceleration

Service discovery is not happening in AS3

How to implement LTM forward proxy client to determine the diversion pool based on the domain name

FTP PASV mode to Extended Passive mode

Oracle JDBC SSL Termination failing on F5

Related Content

Help F5 Transform the BIG-IP Administrator Certification

Updating SSL Certificates on BIG-IP using REST API

BIG-IP Next: iRules pool routing

BIG-IP Next Automation: AS3 Basics

Re: Get Started with BIG-IP Virtual Edition (VE), BIG-IQ VE or BIG-IP Cloud Edition Trial

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS