Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IQ SSL Orchestrator
Opened: Jul 18, 2019 Severity: 4-Minor
When you create a new SSLO topology, the 'Device Overrides' section is not visible in the security policy page when using an existing security policy.
You may not be able to view and modify device-specific security policy configurations when creating a new SSLO topology.
This occurs whenever you try to create a new SSLO topology, choose the 'Using Existing' option in the security policy configuration page, and select a security policy which is already deployed to managed BIG-IP devices.
To view or edit device specific security policy configurations, you will need to configure device overrides outside of the SSLO topology wizard. From the 'Configuration' tab in BIG-IQ, navigate to 'SSL Orchestrator' >> 'Security Policies.' Select a security policy or create a new one and update the target BIG-IP devices or clusters if needed under the 'Target Members' section. View or edit device-specific configurations in the 'Device Overrides' section, save the security policy, and deploy the configuration to your managed BIG-IP devices. When creating a new SSLO topology in the topology wizard, choose the 'Use Existing' to use the security policy you just configured.
None