Forum Discussion
mishpan_70054
Aug 16, 2012Nimbostratus
Regarding SSL-offload on 6900 box (FIPS-HSM enable)
I have four 6900 boxes (FIPS-HSM enable) which are handling traffic coming from above ha pair (3900 boxs). Now if these four 6900boxes have to off-load traffic for https://abc.com, do have to generated CSR request for each box (which means four private key) for CN-abc.com? or i can generate one CSR and use the same key & certificate ?
cheer
mishpan
- hooleylistCirrostratusHi mishpan,
- mishpan_70054NimbostratusThanks for reply,
- hooleylistCirrostratusIf you can't add the FIPS devices to the same domain then I think you'll need to generate separate CSRs on each. You could confirm this with F5 Support.
- Eduardo_N__1674Nimbostratus
Is the FIPS external HSM's (ie a networked one like Thales) or the integrated FIPS module (these models usually end in F)?
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects