Forum Discussion

genseek_32178's avatar
genseek_32178
Icon for Nimbostratus rankNimbostratus
Feb 05, 2013

SSL Cert

Hi Experts,   We have a Virtual listening on 443, and we are expected to apply clientssl profile to the VS. But we are told before we apply the profile, we need to copy the .crt to the box if it i...
basic
getting started
new to f5
Hamish's avatar
Hamish
Icon for Cirrocumulus rankCirrocumulus
Feb 05, 2013
Doubly & Triply make sure that when the SSL key is exported and provided to you it isn't emailed or anything silly like that. The key is just that. A key. if it's compromised, generate a new key and CSR and get it signed. Get the compromised one REVOKED by the CA who signed it. You DO NOT want to have your private key out there (With it anybody can spoof you and decrypt the traffic to your server).

 

 

H