F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

khiali_130513's avatar
khiali_130513
Icon for Nimbostratus rankNimbostratus
Mar 07, 2014

The remote server's SSL certificate has already expired - Plugin ID 15901

Hi Experts   We are running Nessus Scan against our F5 BIG-IP LTM devices and getting following alert:-   The remote server's SSL certificate has already expired - Plugin ID 15901   Now prob...
application delivery
ibm
LTM
security
Cory_50405's avatar
Cory_50405
Icon for Noctilucent rankNoctilucent
Mar 07, 2014

It may be that Nessus is assuming an expired certificate if it receives a mismatch between the CN of the certificate and the URL it used to access the LTM. As long as your certificate on the interface is still valid (whether it's a custom certificate or a self-signed should not matter), then this is a false positive finding.

 

khiali_130513's avatar
khiali_130513
Icon for Nimbostratus rankNimbostratus
Mar 11, 2014
Here is the cert related information:- General Properties Name: server Certificate Subject(s): My Company Ltd Certificate Properties Expires Jan 16, 2013 Version 3 Serial Number XXXX Subject:- Common Name: Organization: My Company Ltd Division: Locality: xxx State Or Province: Country: xxx I am a bit confused here. Management certificate is expired for sure as shown above. Almost a year ago. so Scan result is good. Now since we are using IP address only to access the management interface, so we can ignore the requirement of renewing this certificate. Please correct me if I am wrong.