For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Bob_May_78337's avatar
Bob_May_78337
Icon for Nimbostratus rankNimbostratus
Jun 25, 2014

LTM Certificates Installation, without a key

I am having consistent issues with our internal CA admins who continually issue certificate without keys. Can the LTM's support a certificate without a key or is it required to have an associating key with the certificate in our LTM's?

 

application delivery
LTM
management
microsoft
security

2 Replies

  • Kevin_Stewart's avatar
    Kevin_Stewart
    Icon for Employee rankEmployee
    Jun 25, 2014

    Well two things:

     

    1. You absolutely need the private key in the LTM SSL config.

       

    2. It's highly unlikely (let's say cryptographically impossible) that the CA admins are issuing PKI certs without keys. It's more plausible that they're issuing certs and just not giving you and/or exporting the private key.

       

  • Mike_Sullivan_2's avatar
    Mike_Sullivan_2
    Icon for Nimbostratus rankNimbostratus
    Jun 27, 2014

    You can generate your own signing request and have your PKI admins sign it. That way you'll have the private keys on the box.

     

    Cheers, Mike