Bug ID 421971: Renewing certificates with SAN input in the GUI leads to error.

Last Modified: Apr 10, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP AAM, APM, ASM, LTM, WAM(all modules)

Known Affected Versions:
11.1.0, 11.2.0, 11.2.1, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.1 HF1, 11.5.1 HF10, 11.5.1 HF11, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.5.1 HF6, 11.5.1 HF7, 11.5.1 HF8, 11.5.1 HF9, 11.5.2, 11.5.2 HF1, 11.5.3, 11.5.3 HF1, 11.5.3 HF2, 11.5.4, 11.5.4 HF1, 11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 11.6.1

Fixed In:
12.0.0, 11.6.1 HF1, 11.5.4 HF2

Opened: May 28, 2013
Severity: 3-Major
Related AskF5 Article:
K14669

Symptoms

Renewing an existing certificate fails using the GUI if a user provides Subject Alternative Name (SAN) as input.

Impact

Cannot renew certificate using the GUI.

Conditions

Using the GUI, provide SAN while renewing certificate.

Workaround

Do not provide SAN information while renewing certificates. As an alternative, you can create a new certificate with a SAN. Impact of workaround: Performing the suggested workaround should not have a negative impact on your system.

Fix Information

Renewing an existing certificate now succeeds if a user provides Subject Alternative Name (SAN) as input in the GUI.

Behavior Change