Bug ID 678257: import existing netHSM private key to BigIP

Last Modified: Apr 10, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP LTM(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1

Fixed In:
14.0.0

Opened: Aug 13, 2017
Severity: 3-Major

Symptoms

BIG-IP can only use the netHSM that is created at the BigIP.

Impact

BIG-IP user cannot reuse the pre-existing netHSM key that is not created at BigIP.

Conditions

When netHSM key is created from a non-BIG-IP client.

Workaround

People need to recreate a new netHSM key from the BIG-IP connecting to the netHSM.

Fix Information

We added this function as a new feature to the BIG-IP user. With this fix, people just need to specify the key label for the pre-existing netHSM key to install/import the key to bigip. The new key will just have the same name as the key label.

Behavior Change