Last Modified: Nov 07, 2022
Known Affected Versions:
13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1
Opened: Dec 16, 2016 Severity: 3-Major
No support for the use of SSL key/cert management via GUI/iControl when Thales netHSM is adopted.
Thales users cannot use GUI/iControl to manage SSL key/cert.
When Thales is used as netHSM to work with the BIG-IP system.
Thales users have to use fipskey.nethsm - a standalone wrapper program of Thales provided utility - to create netHSM key and certificate.
This release implements the native PKCS#11 API based key management for netHSM vendors. With this fix, all netHSM users including Thales users are able to use tmsh command to manage key/cert.