Use REST iControl to upload bundle of key AND cert?

Question

Hi all,&nbsp;
I am currently automatizing our management in our software. I can successfully add certs, keys or bundles consisting of certs. But I would like to upload a bundle consisting of a key and a cert.
Bigip only recognizes the private key in the pem tough. Any ideas?&nbsp;
Used URL is tm/sys/crypto ofcourse.&nbsp;

tatmotiv · Answer

I guess your cert/key bundle is in pkcs12 format? I'd try uploading the bundle (I understood this part is already working) and then use the openssl command line tool on the bigIP to split the bundle into separate key and cert files in pem format. Proper command line for that would be
openssl pkcs12 -clcerts -nokeys -in bundle.p12 -out cert.crt
openssl pkcs12 -nocerts -nodes -in bundle.p12 -out cert.key

Attention: this will produce an unencrypted private key file. 
You can try to automate this by executing openssl as an external command through REST, but this might rise some problems with password protected bundles.

jrahm · Answer

Here's an example to upload files via iControl REST with python.&nbsp;

Forum Discussion

Use REST iControl to upload bundle of key AND cert?

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

File Upload via iControl REST

File Uploads and ASM

Certificate Bundle Timestamp Query

Import ssl certicate bundle through iControl as user with Certificate Manager role

File upload and ASM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS