Certificate management, key security-type

Question

hi&nbsp;
Anyone knows what the Security-Type (by import of a key) "Password" is for?&nbsp;
Made some tests importing password-protected and not-protected keys and selecting normal/password results in no difference.&nbsp;
Thanks&nbsp;
Alex&nbsp;

el · Answer

Hi Alex, do you already know the answer? I also see no different so far from my testing.

nathe · Answer

Is it to distinguish a non-FIPS key from a FIPS key, if you have a FIPS card in the bigip?

saravanan_m_k · Answer

Generally on BIGIP there are four security-type for the SSL key (depending on what modules you have).  The security-type  specifies the type of security used to handle or store the key.&nbsp;
normal: The key resides in a standard form on the file-system. This is the default value.&nbsp;
fips: The key is protected by a FIPS device on the system and is only applicable to devices with FIPS support&nbsp;
password: Specifies that the key is protected by a passphrase and stored in encrypted form.&nbsp;
nethsm: The key is protected by a FIPS device outside the system.&nbsp;

Forum Discussion

Certificate management, key security-type

3 Replies

Recent Discussions

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Enabling AVR and creating Profiles

Get associated pool name from VIP IP using F5-LTM

Related Content

Re: Management Certificate

F5 Venafi Solution for Enterprise Key and Certificate Management

NGINX Management Suite API Connectivity Manager - Modern API driven Applications

Using iControl REST API to manage F5 BIG-IP Advanced Firewall Manager (AFM)

Device Management