F5 Viprion Vcmp LTM instance device trust certificate expired

Question

Hi, Wonder if anyone can shed any light on an issue I have, I noticed after adding some new config to a F5 viprion Vcmp LTM instance that it went out of sync, It is 1 of a pair of F5 VCMP instances configured for HA/Autosync etc, It was in sync before I added the new config, After having a look around I have noticed that the device trust Cert (dtca.crt) has expired, For some reason it appears that it only had a lifespan of 1 year, Is there anyway of renewing the cert ? Obviously this isn't a standard CA signed cert and I can't just click renew as you can with an external cert, Anyone got any ideas ? Or I am going to have to reset the device trust and then go through the process of renewing it.&nbsp;
Regards&nbsp;
Ross&nbsp;

greg_robinson_1 · Answer

You're going to need to reset the device trust. Generate a new certificate on the device with the default 20 year expiry then add the peers back into the Root trust-domain before adding them back into the CM device group.

Forum Discussion

F5 Viprion Vcmp LTM instance device trust certificate expired

1 Reply

ICYMI - Steve Wozniak at AppWorld 2026

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Forward proxy with SSL passthrough - SWG license required?

Need step-by-step guidance for migrating BIG-IP i2800 WAF to rSeries (UCS restore vs clean build)

Use F5 APM as Forward Proxy

LB Connection Limit Detection Method

Connections appear not to use Persistence

Related Content

Announcing F5 NGINX Instance Manager 2.20

Automating Certificate Management on F5 BIG-IP

Certificate Automation for BIG-IP using CyberArk Certificate Manager, Self-Hosted

Displaying Application Study Tool (AST) Dashboards in Your Own Grafana Instance

Introducing F5 WAF for NGINX with Intuitive GUI in NGINX One Console and NGINX Instance Manager

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS