Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology

Big IP DNS Certificate issues


I am reasonably new to F5 and am looking for some help in relation to Big IP DNS. My predecessor had configured Big IP DNS with a trial license, then he left the company. The trial has long expired but my company have decided to move forwards with Big IP DNS I have licensed and allocated resources This re-instated the original configuration(created by my predecessor) Although all servers are in the down state Several months back I renewed the management certificates of all devices and thought this might be related So I ran bigip_add to add the new certificates to the Trusted Server Certificates but nothing had started working yet.

I see the following in the GTM logs

iqmgmt_ssl_connect: SSL error: error:14094413:SSL routines:SSL3_READ_BYTES:sslv3 alert unsupported certificate (336151571)

Reading around this the un-support certificates seems to indicate I am using the wrong type of certificate, mine had been created using the CA using the webserver template, like the following https://devcentral.f5.com/questions/can-san-certificates-be-used-for-device-certificates Can anyone advise me as to whether this is still the case as this is some time ago (2012) Many thanks

Rate this Question

Answers to this Question


I have updated my certificates as suggested in the article that I have referenced. Everything is now working as expected