Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IQ Applications
Known Affected Versions:
7.1.0, 7.1.0.1, 7.1.0.2, 7.1.0.3, 7.1.6, 7.1.6.1, 7.1.7, 7.1.7.1, 7.1.7.2, 7.1.8, 7.1.8.1, 7.1.8.2, 7.1.8.3, 7.1.8.4, 7.1.8.5, 7.1.9, 7.1.9.7, 7.1.9.8, 7.1.9.9
Opened: Dec 04, 2020 Severity: 3-Major
When you send a POST request to the force-delete endpoint to delete an AS3 application, the delete fails with an error. Error message includes: <certificate_key> is pinned to device <device>
Can't use force-delete API to delete the application if cert and key(s) are already pinned to a device.
This issue happens when certificate that is defined in the AS3 declaration and device is reimported/rediscovered.
Here is the manual workaround 1) in UI, navigate to Configuration -> LOCAL TRAFFIC -> Pinning Policies 2) From Resource Type "SSL Certificates" select certificate and keys (the one included in the error message) remove both of them. 3) run force-delete
None