Forum Discussion
NimbostratusCertificate and Keys are not in the UCS File on v11
Hi,
I have two different versions of F5 and I have just discovered that the UCS does not include the certificates or the /config/filestore.
- 11.2.1_HF1 (cluster) (VE)
- 11.3.0_HF4 (cluster) (1600)
I have discovered that on both these systems UCS archives:
- /config/ssl/ssl.crt - is empty
- /config/ssl/ssl.key - is empty
- /config/filestore - does not exist
The UCS files are created using the command tmsh save /sys ucs
I also tried creating the UCS files using the GUI and the same thing is occurring.
Is anyone else seeing this behavior?
As an experiment I have just installed a brand new 11.2.1 VE and an 11.5.0 VE from original media.
The behavior is the same. There are no certificates backed up in the UCS.
-Rowan
2 Replies
- boneyard
MVP
i found them here, within the UCS that is: \var\tmp\filestore_temp\files_d\Common_d\certificate_d\
im would be quite surprised if this wouldnt have been working i assume people restore UCSs regulary enough and never seen anyone post their certificates were missing.
JGCumulonimbus
I came across this phenomenon in the past, and my way out of this, in a hurry, was to restore from a .scf backup file first (fortunately I had created both .scf and .ucs backups as a precaution as I did not have the time to figure out the differences between the two from the sol articles at the time). So use this method only when you have tried everything and you are desperate....
