iqdump failing between GTM and newly replaced ASM
We just had to replace our ASM device. Now I'm trying to get it communicating with our GTM. The health check between both our GTMs and the new ASM is failing. i've added the ASM cert to trusted certs on both GTMs. And I've added both GTM certs to trusted certs on the ASM. When I run bigip_add x.x.x.x (ip of the new ASM) on the GTM I get an error about
"The fingerprint for the RSA key sent by the remote host is....Please contact your system administrator.Add correct host key in /root/.ssh/known_hosts to get rid of this message.Offending key in /root/.ssh/known_hosts:3Host key verification failed.......ERROR: Can't read remote cert via /usr/bin/ssh"
when I run the sed command to rename the file - sed -i '3d' ~/.ssh/known_hosts I get this error -
sed: cannot rename /root/.ssh: Invalid cross-device link
Not sure what else to check. Packet capture shows the ASM and GTM making successful handshake and pushing data and closing the connection. iqdump shows:
5013:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed:s3_clnt.c:915:
update:
Was able to remove the line using the VI command and then run bigip_add x.x.x.x. however the health monitor is still failing (it's using TCP or BIG IP) and iqdump still shows same error above.