Last Modified: Dec 10, 2018
See more info
Known Affected Versions:
13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1
Opened: Sep 30, 2016
Outdated and unused unit key is left on 5000- and 7000-series platforms after upgrade from an older version to v13.0.0.
1) Unit key on disk is preferred over unit key in hardware. 2) Potential config load failures when upgrading from pre-v13.0.0 to v13.0.0, or installing v13.0.0 hotfixes on these devices.
-- Running on 5000- and 7000-series platforms. -- Upgrading from a version earlier than v13.0.0 to v13.0.0. -- Installing v13.0.0 hotfixes
NOTE: Impacts only 5000- and 7000-series platforms. On or before upgrade to v13.0.0 or its associated hotfixes, perform the following procedure: 1) Set master key to a known value: modify sys crypto master-key prompt-for-password 2) Save config: tmsh save sys config 3) Remove the old unit key: rm /config/bigip/kstore/.unitkey 4) Load config: tmsh load sys config 5) Save config: tmsh save sys config
Unit key is no longer left on 5000- and 7000-series platforms after upgrade from an older version.