For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

khiali_130513's avatar
khiali_130513
Icon for Nimbostratus rankNimbostratus
Mar 07, 2014

The remote server's SSL certificate has already expired - Plugin ID 15901

Hi Experts   We are running Nessus Scan against our F5 BIG-IP LTM devices and getting following alert:-   The remote server's SSL certificate has already expired - Plugin ID 15901   Now prob...
application delivery
ibm
LTM
security
Cory_50405's avatar
Cory_50405
Icon for Noctilucent rankNoctilucent
Mar 07, 2014

It may be that Nessus is assuming an expired certificate if it receives a mismatch between the CN of the certificate and the URL it used to access the LTM. As long as your certificate on the interface is still valid (whether it's a custom certificate or a self-signed should not matter), then this is a false positive finding.

 

Cory_50405's avatar
Cory_50405
Icon for Noctilucent rankNoctilucent
Mar 10, 2014
Correct. So the Nessus finding should only be a real finding if the certificate you have loaded on the management interface is actually expired. Otherwise, it's a false positive. Doesn't matter which CA (or self signed), since you accessing by IP address.