How to update a certificate on a FIPS appliance

How to update a certificate on a FIPS appliance

book

Article ID: CTX236026

calendar_today

Updated On:

Description

How to update a certificate on a ADC FIPS appliance. We are assuming the private key file of the new certificate is encrypted.

Instructions

We are assuming the private key file of the new certificate is encrypted. Please follow the following steps from the CLI: 

1. Upload the certificate and key file on the ADC (Traffic mgt > SSL > SSL files)

2. Decrypt the private key >> go to CLI. Enter the following commands:

SHELL
cd /nsconfig/ssl
Is -lrt
openssl rsa -in encryptedkeyfile.key -out decryptedkey.pem
(Enter passphrase)
exit

3. import ssI fipsKey newkey-fips.key -key "/nsconfig/ssl/decryptedkey.pem" -inform PEM -exponent 3

4. update ssI certKey certkeypairname -cert newcert.crt -fipsKey newkey-fips.key -inform PEM -noDomainCheck

Issue/Introduction

How to update a certificate on a FIPS appliance
Powered by Wolken Software