Bug ID 634054: Use GUI/iControl to manage key/cert for Thales users

Last Modified: Jul 12, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1

Fixed In:

Opened: Dec 16, 2016

Severity: 3-Major


No support for the use of SSL key/cert management via GUI/iControl when Thales netHSM is adopted.


Thales users cannot use GUI/iControl to manage SSL key/cert.


When Thales is used as netHSM to work with the BIG-IP system.


Thales users have to use fipskey.nethsm - a standalone wrapper program of Thales provided utility - to create netHSM key and certificate.

Fix Information

This release implements the native PKCS#11 API based key management for netHSM vendors. With this fix, all netHSM users including Thales users are able to use tmsh command to manage key/cert.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips