Bug ID 707276: In-use, expired certificates now have a warning in the GUI

Last Modified: Aug 19, 2020

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
14.0.0, 14.0.0.1, 14.0.0.2, 14.0.0.3, 14.0.0.4, 14.0.0.5, 14.0.1, 14.0.1.1, 14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 15.0.0, 15.0.1, 15.0.1.1, 15.0.1.2, 15.0.1.3, 15.0.1.4

Fixed In:
15.1.0

Opened: Feb 20, 2018
Severity: 3-Major

Symptoms

If your BIG-IP device is using an expired certificate, you will now see a warning banner in the GUI.

Impact

There is no functional impact.

Conditions

This is encountered if your device is using an expired certificate.

Workaround

You can see all expired certificates on the system by running the following tmsh command: tmsh run sys crypto check-cert

Fix Information

System management GUI shows a prominent warning when an expired SSL certificate is in use.

Behavior Change

Now, the system identifies in-use, expired SSL certificates and shows a prominent warning in management GUI. By default, this feature is enabled. You can configure this feature by using the following TMSH option: tmsh modify sys global-settings gui-expired-cert-alert enabled/disabled