For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Muhannad_64809's avatar
Muhannad_64809
Icon for Nimbostratus rankNimbostratus
May 16, 2017

Clone SSL profile?

Dears,   I have a SSL profile that contain an old Certificate, there is a password associated with this certificate but we have missed it long time ago so i am unable to associate this Cert with a...
ASM Advanced WAF
security
JG's avatar
JG
Icon for Cumulonimbus rankCumulonimbus
May 17, 2017

The passphrase in the SSL profile is encrypted with the device's master key for this purpose. You can export the master key to another F5 device where you intend to re-use the same SSL certificate - just make sure that that "new" device does not already have any configuration objects that was generated with that device's original master key.

 

Here are some resources to help you with this:

 

K14912: Adding and removing encryption from private SSL keys (11.x - 13.x)

 

K9420: Installing a UCS file containing an encrypted passphrase .