Bug ID 678257: import existing netHSM private key to BigIP

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
12.1.1, 12.1.2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1, 12.1.5, 12.1.5.1, 12.1.5.2, 12.1.5.3, 12.1.6

Fixed In:
14.0.0

Opened: Aug 13, 2017

Severity: 3-Major

Symptoms

BIG-IP can only use the netHSM that is created at the BigIP.

Impact

BIG-IP user cannot reuse the pre-existing netHSM key that is not created at BigIP.

Conditions

When netHSM key is created from a non-BIG-IP client.

Workaround

People need to recreate a new netHSM key from the BIG-IP connecting to the netHSM.

Fix Information

We added this function as a new feature to the BIG-IP user. With this fix, people just need to specify the key label for the pre-existing netHSM key to install/import the key to bigip. The new key will just have the same name as the key label.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips