Last Modified: Sep 02, 2025
Affected Product(s):
BIG-IQ Device
Known Affected Versions:
8.3.0
Opened: Jun 09, 2025 Severity: 3-Major
Reactivating a license on BIG-IQ fails with below error in restjavad logs: javax.net.ssl.SSLException: Certificate at host activate.f5.com is not trusted. Please verify the host is correct, and set up SSL Certificate Verification settings for the server certificate or one of its trust chain certificates.
Unable to reactivate the license
License Reactivation
Copy the pem file SSLcom-RootCA-EV-RSA-4096-R2.pem from https://www.ssl.com/repository/SSLcom-RootCAs.zip to /shared folder of BIG-IQ Log in to BIG-IQ shell as the root user and execute the following commands mount /usr -o remount,rw cd /usr/lib/jvm/java-1.8.0-openjdk.x86_64/bin/ ./keytool -import -trustcacerts -file "/shared/SSLcom-RootCA-EV-RSA-4096-R2.pem" -keystore "../jre/lib/security/cacerts" -alias "SSLactivateRSAR2" -storepass "changeit" -noprompt mount /usr -o remount,ro tmsh restart /sys service restjavad After the BIG-IQ restjavad restart, the SSLException should be fixed.
None