Forum Discussion

Nimbostratus

Nov 06, 2013

Renewing device certificate - safe?

I have an HA pair of Big-Ip 3900's, and the device certificate has expired (self signed) can I safely renew it without fear of causing any stoppages to the customer facing web applications? this...

certificate expired

management

security

self signed certificate

version 11.3

Kevin_K_51432

Historic F5 Account

Nov 06, 2013

Might be helpful to identify which device certificate you're referring to.

If you're referring to the device certificate for UI admin page, that would be here:

/config/httpd/conf/ssl.crt

http://support.f5.com/kb/en-us/solutions/public/7000/700/sol7754.html

As mentioned, this shouldn't affect connectivity through the SSL Virtual Servers.

The device trust certificate for HA would be here:

/config/ssl/ssl.crt/dtca.crt

http://support.f5.com/kb/en-us/solutions/public/13000/900/sol13946.html

It would be best to take a maintenance window if updating these since you have to break the device trust to update them.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Renewing device certificate - safe?

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

iRule causing requests to be duplicated (sometimes)

SSL Bridging and FQDN rewrite Policy

How can I get started with iCall

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

Could not communicate with the system. Try to reload page.

Related Content

How to Renew F5 Device Certificate

AS3 w/ certificates and renewals..

Automating Certificate Management on F5 BIG-IP

unsupported certificate error with device certificates

issue with URL after certificate renewal.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS