Forum Discussion

Nimbostratus

Sep 02, 2015

SSL Certificate - Signature Verification Failed Vulnerability

Hi, i have following vulnerability on the scan.Can some body know how to fix this F5 ASM version 11.4 SSL Certificate - Signature Verification Failed Vulnerability CVSS Temporal...

ASM Advanced WAF

security

boneyard

MVP

Sep 07, 2015

not that much information (sure a whole lot of text on the issue, but that is just copy pasting).

i assume a basic vulnerability scan (probably with Qualys) was performed against the management interface of your BIG-IP?

in that case it probably doesn't like that you are using the the self signed BIG-IP server certificate which isn't signed by a CA the scanning tool knows. so to resolve this you have to put a certificate signed by a known CA on the BIG-IP: http://support.f5.com/kb/en-us/solutions/public/14000/600/sol14620.html

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL Certificate - Signature Verification Failed Vulnerability

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

df -h /shared file missing

SSO login for APM Profiles

Need Advice on below issue

Virtual Server Configuration requirements for ISO 8583 traffic (Single persistent TCP session)

threat hunting guide

Related Content

Automating Certificate Management on F5 BIG-IP

Configure NGINX microgateway for MTLS termination and client certificate hash verification

OpenSSH vulnerability

Mitigating Log4j Vulnerability using F5 BIG-IP

BYOEDR, Undetectable backdoor, WhoFi, Cyberattack to airline, and Clickjacking vulnerability

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS