Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Fuchan_Tan_3092's avatar
Fuchan_Tan_3092
Icon for Nimbostratus rankNimbostratus
Mar 16, 2012

PEM routines:PEM_do_header:bad password read

Joe,     When executing the LocalLB/ProfileClientSSL::create(), I am getting the following error. I believe my certificate and key are correct. Please see my code fragment below.     It ...
dev
devops
iControl
Fuchan_Tan_3092's avatar
Fuchan_Tan_3092
Icon for Nimbostratus rankNimbostratus
Mar 28, 2012
The objective to convert the following tcl script by using Java iControl:

 

 

profile clientssl ${CreateClientSslProfile.ProfileName} {

 

defaults from clientssl key "${CreateClientSslProfile.SslKeyFile}"

 

cert "${CreateClientSslProfile.SslCertFile}"

 

chain "${CreateClientSslProfile.SslChainFile}"

 

passphrase "${CreateClientSslProfile.SslPassPhrase}"

 

}

 

 

 

The issue is when to set the passphrase. Do you set the passphrase before or after the call -

 

i_interfaces.getLocalLBProfileClientSSL().create(profile_names, keys, certs)?

 

 

 

I tried call i_interfaces.getLocalLBProfileClientSSL().create(profile_names, keys, certs), but i am getting "PEM routines:PEM_do_header:bad password read" error.

 

 

I also tried to set the passphrase first before calling i_interfaces.getLocalLBProfileClientSSL().create(profile_names, keys, certs), but i got profile does not exist error.