Forum Discussion
Nimbostratusremoving cert from ltm
Hey,
In the middle of doing some house cleaning on the LTMs. I am trying to remove a certificate that none of the vips use. I keep on getting "object is in use". I combed the config while grepping for it and it exists no where but the /config/filestore/files_d/Common_d/certificate_d/:Common: directory.
Should I delete it directly from bigip.conf ?, what is the best way of doing so ?
Thanks
3 Replies
- nitass
Employee
i think we should not directly delete file in filestore (i.e. /config/filestore/files_d).
would it be possible to force mcpd to re-load configuration and try to remove it again through tmsh or gui?
sol13030: Forcing the mcpd process to reload the BIG-IP configuration
https://support.f5.com/kb/en-us/solutions/public/13000/000/sol13030.html 
TechgeeegHi,
If you are getting an error this means the CERTIFICATE is in use by any one of the Virtual Servers. First of all find out where is it getting used
Regards,
Hannes_RappCould it be that you're looking in the wrong place? A certificate can't be in use by VS, it can only be used by a clientside or a serverside SSL profile. The recommended thing to do is to search for the occurrences in /config/bigip.conf file, you will then find out the relevant SSL profiles that use it. First detach the certificate from all the SSL profiles, then you can remove it.
