Forum Discussion
Import SSL Cert
- Jun 10, 2016
Ref: https://support.f5.com/kb/en-us/solutions/public/14000/600/sol14620.html
Section 'Importing an SSL certificate'
First you export the certificate or private key as .txt (Ctrl + C for copy), and then you import it to another BigIP as txt (Ctrl + V paste). It's a lot more complicated with FIPS module, but I assume you don't use it.
Hi,
There is a risk way to import all SSL to a new LTM.
- Take a UCS file of your old LTM.
-
Take the master key of your old
(Copy that)bash f5mku –K
-
reKey your new LTM with the old LTM’s key
f5mku –r <paste the masterkey of your old LTM>
-
Import the UCS file from your old LTM to your new LTM
-
Restore the UCS file on your new LTM:
tmsh load sys ucs <name of ucs>.ucs no-license no-platform-check reset-trust
-
Deleting all other configuration elements that you don’t want
-
All SSL profiles will be there.
Do not do this if the new LTM is already productive. This procedure is applicable just if you need all SSL on another LTM no matter what.
- Samir_Jha_52506Jun 11, 2016Noctilucentucs doesn't contain SSL Key & cert file. If you need to move all key/cert to other LTM system then use archive method.
- Misa_222415Jun 24, 2016CirrusHi Samir Jha, I've done this several times, and yes it is possible.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com