Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

SSL certificate configured , how to make sure works

How to make sure ssl certificate we have configured on LTM is working?

Or how do I verify the certificates that I have recently configured is working properly ?

0
Rate this Question

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Check that the MD5 sum of the cert and key match

openssl x509 -noout -modulus -in /path/to/certificate.crt | openssl md5
openssl rsa -noout -modulus -in /path/to/key.key | openssl md5

Also, Navigate to the VIP URL and check if you get an SSL errors in chrome or firefox

0
Comments on this Answer
Comment made 4 months ago by GLM 80

Hello Nesh, Thanks for replying

Could you help me to understand how do I read the command or is there any URL which you can share with me to understand on this kind of commands.

This can be run through tmsh or its bash commands?

0
Comment made 4 months ago by @nesh 702

its run via bash, u can check the man page of openssl for help with understanding the options available in the openssl command.

Comparing the md5sum of these two commands. If they match, the key and cert are, in fact, a valid pair. If the sums do not match then the key that was used to make the CSR is not the original key that was used to generate the certificate itself.

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Greetings,
The best test will be to simply connect with the popular web browsers and ensure:

  • The browser shows a green lock (or however that browser indicates a secure connection).
  • There are no warnings.
  • It is in fact the certificate you installed.

There are also a number of "ssl certificate checker" sites available to test your URL.

Hope this is what you were after and is somewhat helpful!
Kevin

0