For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Wyko's avatar
Wyko
Icon for Altostratus rankAltostratus
Jul 12, 2023

How to make a password-protected private key via REST

Hey everyone!  Does anyone know how to use a REST command to create a password protected key? I tried the following, but it gave me the error:    {"code":400,"message":"\"passphrase\" may not be...
devops
phildotchon's avatar
phildotchon
Icon for Nimbostratus rankNimbostratus
Aug 03, 2025

Hi JRahm​ 

the /tm/sys/crypto methods have been deprecated for a while, but rather the /tm/sys/file/ssl-key method instead.

I'm struggling to believe this, can you tell me where this depreciation is documented? The /tm/sys/file/ssl-key method seems to not actually allow the generation of a key withing the F5, it only allows one to be imported from elsewhere. If I try to create new by just specifying a name and key size, I get

"code": 400,
"message": "source-path is required.",
"errorStack": [],
"apiError": 26214401

 

JRahm's avatar
JRahm
Icon for Admin rankAdmin
Aug 05, 2025

They sorta work in some scenarios, but when I was working on the imperative sdk years ago I was told to focus on the file commands as the crypto ones were deprecated. Also having a hard time finding that documented anywhere. I'm poking around on this, will let you know if I turn anything up.