Leo
asked on
Import certificates into F5
I am trying to install SSL certificate on F5, I keep getting Import error (Screenshot attached) I have tried entering password, and changing the option for Key security, it doesnt work.
The certificate i am selecting is in .pem format, have selected .crt and .p7b as well, none of them works.
Have anyone experienced the same error?
Thanks for your help.
The certificate i am selecting is in .pem format, have selected .crt and .p7b as well, none of them works.
Have anyone experienced the same error?
Thanks for your help.
https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/bigip-ssl-administration-11-6-0/3.html
Was the request generated on the F5?
Was the request generated on the F5?
ASKER
No, its a Godaddy third party certificate, which we use it on our exchange server as well. Primarily use of F5 is reverse proxy, for OWA.
I have to generate a certificate request on f5?
I have to generate a certificate request on f5?
It is up to you where you generate it, but it needs to match its use.
You have to load both the certificate and the private key used to generate the csr which was signed resulting with the cert.
It sounds by your last post question, that you are in,y trying to load the certificate (signed by goddaddy) which would explain an error which you did not include.
Missing private key, missing CA certificate chains.
Does the certificate multi-name (SAN certs)?
Are you using the certicate mmc to export the cert and private key (PFX) that you then can use OpenSSL to convert to a pen format.
You have to load both the certificate and the private key used to generate the csr which was signed resulting with the cert.
It sounds by your last post question, that you are in,y trying to load the certificate (signed by goddaddy) which would explain an error which you did not include.
Missing private key, missing CA certificate chains.
Does the certificate multi-name (SAN certs)?
Are you using the certicate mmc to export the cert and private key (PFX) that you then can use OpenSSL to convert to a pen format.
ASKER
Thanks.
We have allocated a spare public IP address, so for any traffic which comes and hits our public IP address 210.18.x.x, next hop for this traffic needs to be our firewall which is meraki (210.18.x.x)
I can telnet to our meraki firewall from outside the network but i cant telnet to 210.18.x.x, i get no response? what i am missing here?
thanks.
We have allocated a spare public IP address, so for any traffic which comes and hits our public IP address 210.18.x.x, next hop for this traffic needs to be our firewall which is meraki (210.18.x.x)
I can telnet to our meraki firewall from outside the network but i cant telnet to 210.18.x.x, i get no response? what i am missing here?
thanks.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
The private key and cert has to ve within a pem file