Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Preet_pk's avatar
Preet_pk
Icon for Cirrus rankCirrus
Oct 28, 2022

Replacing the Configuration utility's self-signed device certificate with a CA-signed Certificate

Hi, As part of vulnerability scan open point in our environment, there is one open point to "install a server certificate signed by a trusted third-party Certificate Authority". Please let me know ...
application delivery
Paulius's avatar
Paulius
Icon for MVP rankMVP
Nov 01, 2022

If you are referring to the SSL cert that is used when logging into the GUI I believe the following article is what you are looking for. It is important that you create a backup of the SSL cert and key before changing them which can by done by typing the following.

cd /config/httpd/conf/ssl.crt/server.crt
cp server.crt server.crt.bak

cd /config/httpd/conf/ssl.key/server.key
cp server.key server.key.bak

https://support.f5.com/csp/article/K42531434#replace