Last Modified: Apr 10, 2019
See more info
Known Affected Versions:
11.5.0, 11.5.1, 11.5.1 HF1, 11.5.1 HF10, 11.5.1 HF11, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4
12.0.0, 11.6.0 HF5, 11.5.2, 11.5.1 HF6
Opened: Sep 18, 2014
Related AskF5 Article: K16724
Install of FIPS exported key files (.exp) on one BIG-IP causes device group sync to fail.
Device group sync failed.
With two or more FIPS BIG-IPs configured in a device group, install a correct FIPS exported key file (.exp key) on bigip1. This exp file must be from a FIPS box belonging to the same FIPS security domain.
Copy the FIPS .exp file to the peer. Install this .exp key file on the peer also, similar to how it was installed on the first BIG-IP.
FIPS exported keys can now be successfully installed in FIPS cards without causing config-sync failure.