Bug ID 540328: SSL key/certificate/csr file renewal/overwrite fails silently.

Last Modified: May 14, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
12.0.0

Fixed In:
12.1.0, 12.0.0 HF1

Opened: Aug 17, 2015
Severity: 3-Major

Symptoms

When renew/overwrite the SSL key/cert/csr files using GUI/iControl, the file names are updated, however the contents of the files remain the same. It fails to replace the files but doesn't throw any error to notify the users.

Impact

The users could use unsuccessfully updated key/cert/csr without notifying that they are still using the old key/cert/csr until it really causes issues, for example, expired.

Conditions

When renew/overwrite the SSL key/cert/csr files using GUI/iControl.

Workaround

Delete the key/cert/csr and create them again using the same name, instead of using renewal/overwrite option in GUI/iControl to replace the existing key/cert/csr files.

Fix Information

With the fix, the key/cert/csr files can be successfully replaced using renewal/overwrite option in GUI/iControl.

Behavior Change