Last Modified: Sep 13, 2024
Affected Product(s):
BIG-IP APM
Opened: Mar 15, 2024 Severity: 3-Major
When a machine cert check agent is used in an access policy and references a certificate authority profile, policy export does not create the object properly in the ng_export.conf file. This causes the subsequent import to fail. 1. Export policy from 17.1.1 2. Attempt to import into another APM on 17.1.1 3. In the GUI it refreshes, but never imports. 4. Import command fails with this error: 21:12:06 0 error: 01020036:3: The requested profile_certificateauthority (/Common/my-ca) was not found. Unexpected Error: Loading configuration process failed.
Can not import the access policy into a different APM.
Importing a policy from one APM system into another APM system.
Modify the ng_export.conf file to add @name- in the certificate-authority profile object: ltm profile certificate-authority /@partition/@name-my-ca {
None