F5 BIGIP Device Certificate
Hi,
I have two F5 BIGIP ver 11.4.0 (APM Module only) configured as High Availability using Device Service Clustering. I have replaced the default device certificates from both devices using our own external CA server signed certs from GUI admin.
1) Uploaded the Device Certificates to both F5 using GUI. System > Device Certificates > Device Certificates. 2) Uploaded the other F5 Device Cert and ROOT CA as Trusdted Device Certs. System > Device Certificates > Trusted Device Certificates.
During testing, Configsync and HA Failover are working fine. However, after I enable the SSL debug logging level. I am seeing the certificate error such as below.
" Feb 6 debug tmm[10015]: 01260006:7: Peer cert verify error: certificate not trusted (depth 0; cert /CN=) "
I tried to search this type of error from internet and Dev Central but to no avail. I understand that it is something to do with CA trust setings. I would like to determine the exact cause of this error and how to get rid of it.
Based on this KB link http://support.f5.com/kb/en-us/solutions/public/8000/100/sol8187.html. Device certificate is used only by the Configuration utility for HTTPS communication as well as by the following device-to-device communication processes: •configsync •big3d •gtmd •iqdump
Thanks in advance for your help.