Bug ID 464499: client-ssl profile loses cert-key-object When the cert-key-chain object exists in partition other than /Common

Last Modified: Apr 28, 2025

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
11.3.0, 11.5.0, 11.5.1, 11.5.1 HF1, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.5.1 HF6, 11.5.1 HF7, 11.5.1 HF8, 11.5.1 HF9, 11.5.1 HF10, 11.5.1 HF11

Fixed In:
11.6.0, 11.5.2

Opened: May 27, 2014

Severity: 3-Major

Related Article: K15823

Symptoms

A client-ssl profile loses its cert-key-object.

Impact

SSL connection using that profile uses wrong cert/key (but the connection does not fail).

Conditions

When the cert-key-chain object is configured in a client-ssl profile in a partition other than /Common partition.

Workaround

Reload all partitions: 'tmsh load sys config partitions all.

Fix Information

A client-ssl profile configured on a partition other than /Common now retains its cert-key-chain setting.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips