Email Notification of Certificate Expiration
Hi All, Hope you are doing well! Can you please help me in getting email notification for certificate expiry using BIG -IQ. I have enable the certificate expiration and gave threshold as 30 Days. But it is triggering email for those certificate as well who are having 200+ , 300+ , etc .. days left to expire. Can you please help me to fix this. Regards, ShashankS
f5 enterprise manager fails to connect to LTMS
Hello, I have a handful of ltms that cant communicate with EM. There is about half that can talk to the the EM and half that cant. The LTMS are 11.4.1 and EM is 3.1.0. The EM talks to the LTMs fine with iquery communication in the dump logs being ok. On of one of the LTMs in question it was discovered by an engineer who is still working on the case that I have already open, he found these errors on one of the LTM's a couple of days ago: 67 May 21 14:44:18 aprcorpextltm1 err eventd[8174]: 012d0012:3: Notification attempt to consumer id D6E738E8- 1974-626A-2E52-EF1569494AD FAILED with error Failed to connect to host 10.58.1.124, port 443: Operation already in progress. 108 May 21 16:31:33 aprcorpextltm1 err eventd[8174]: 012d0012:3: Notification attempt to consumer id 7451CF6C- 1974-F300-1696-9E58A25A09A FAILED with error Failed to connect to host 10.58.1.124, port 443: Operation already in progress. Anyone run into this before ? Thanks
iControl and Enterprise Manager Permissions
I am using the latest version of the iControl assembly (11.2) and (11.4.1) and ran into a permission issue trying to connect to our local Enterprise Manager. Here is the code with the sensitive information removed: string enterpriseManager = "some server"; int port = 443; string userName = "some user name"; string password = "some password"; Interfaces ic = new Interfaces(); var test = ic.initialize(enterpriseManager, port, userName, password); string[] list = ic.ManagementEM.get_devices(); foreach (string device in list) { Console.WriteLine(device); } Console.ReadKey(); the code gets to line "ic.ManagementEM.get_devices()" and fails with the following message: SoapHeaderException: Exception caught in Management::urn:iControl:Management/EM::get_devices() Exception: Common::OperationFailed primary_error_code : 17238050 (0x01070822) secondary_error_code : 0 error_string : 01070822:3: Access Denied: user (Svcdiscoverysrvcs) does not have access to action (change control administration) Since we want to limit the permissions of the account that accesses enterprise manager, what is the lowest level of permissions that is needed in order to read the devices data in enterprise manager using the iControl assembly? Any assistance would be greatly appreciated.
How to make outbound traffic to flow through an F5
Hello, We have an F5 LTM that front our backend middleware server-pair in a HA setup. So F5 serves as a LB that forward incoming traffic to the active one. But we also need the backend server initiated outbound communication session to go through the F5 and carries F5's address as the origin IP. This is needed because we are replacing an existing standalone middleware server with this above F5-HA infrastructure. But we're experiencing some difficulty. What do we need to do to make this above configuration possible?
Viprion 2400 -- migrating from 2150B to 2250B
Hi All, I am planing to migrate current 2150B to 2250B on 2400 Chassis. Since its being a while, here are the steps I am planning to perform in order to do successful migration. Kindly guide me if any point is missed or advise for a successful migration : Note : 2 2400 Chassis with single 2150B vCMP Create similar Host/Guest configuration on 2250B with same VLAN, Trunks and Interface configuration Assign same amount of resources to each Guest Guest Create similar Vlans, Trunks, Interface Configurations Migrate Archives from Old 2150B to new 2250B Since 2250 is new and most probably with new version, I'll have to downgrade the version to match the same version as running on 2150B in order to successfully migrate. Verify all configurations under LTM, ASM, APM and GTM One thing, since mixing of different blades aren't possible under same Chassis, who will I configure the Blade with above mentioned steps. Moreover, do i need to configure the same 2400Chassis once 2250 is installed, apologies as i'm newbiw ^_^Disable Certificate prompt when certificate is added through managed App configuration
We are an EMM provider and support F5 VPN configuration through Managed App configuration. Once we pass the certificate alias as a configuration, we can bypass the certificate choosing prompt by the Android OS. But the prompt shown by the F5 app(F5 needs access to Certificate) is not getting bypassed. Kindly help us on how to bypass this prompt?F5 Specific Module Access based on Role
Hi Team, We know this is possible in Big-IQ. Below requirement is to achieve it without Big-IQ and directly in the Big-IP. Is it possible without Big-IQ ? Admin-A (Group of Admins) should have access only to LTM, DNS and System Management can do any admin activities and analysis. Admin-B (Group of Admins) should have access only to APM, AFM, ASM/WAF can do any admin activities and analysis. Super Admin: Should have all access. Also, please let me know if these requirements can be achieved only in Big-IQ what more granular level of control Big-IQ can provide.
