Nimbostratus01070313:3: Error reading key PEM file /config/filestore/files_d/P-FE_d/certificate_key_d/:P-FE:hosted.youforceacc.biz.key_41000_1 for profile /P-FE/hosted.youforceacc.biz: error:0907B068:PEM routines:PEM_READ_BIO_PRIVATEKEY:bad password read
CumulonimbusJust so i'm clear - you're trying to create a new SSL profile - Referencing another profile (Parent)?
When you try this - You're getting a key read error - Is the key password protected ?
NimbostratusHi Lain,
No I am Mapping the SSL Client which is already existing with the new Parent Profile.
NimbostratusHi Manik,
I am pretty sure the key and certs dosen't match. Please ensure that the key you use is same as the one you create to generate the CSR.
Thanks.
Nimbostratusi have same issue... key is protected. but it has been imported with passphrase and key and certificate match. however iapps giving same error error:0907B068:PEM. looks like bug in f5. as there is no option in Iapps to specify the password for key
MVPyou can use it in a normal ssl client profile without issues?
then i would first use the default ones as dummy and in the end change them, first disable the iApp strictness.
NimbostratusI can able to update few of the ssl client profiles by selecting parent profile without any issue. But few of the clients I am having issue which are passphrase protected. Please help to resolve this issue guys....
CirrostratusYou need to ask the guy/CA who puts the passphrase on the certificate.
EmployeeThis is probably ID492352. It is fixed in 12.x.x. It is also fixed in the latest hotfix for 11.6.1. Alternately you can contact support and request an engineering hotfix.