01070317:3: sslprofile's key and certificate do not match

Question

I am renewing my cert in F5 LTM device, i am unable to renew the cert. Giving the error sslprofile's key and certificate do not match. same time i am trying to generate new CSR with same name i am not able to generate.

Need suggestions, how to renew.

enes_afsin_al · Answer

Hi,Can you check whether the certificate matches the private key?openssl rsa -noout -modulus -in &lt;private key name&gt;.key | openssl md5
openssl x509 -noout -modulus -in &lt;certificate name&gt;.crt | openssl md5If the md5 values are same, create pfx certificate.openssl pkcs12 -export -out &lt;pkcs name&gt;.pfx -inkey &lt;private key name&gt;.key -in &lt;certificate name&gt;.crtCopy .pfx file to /shared/tmp/ folder and import it.tmsh install sys crypto pkcs12 &lt;pkcs name&gt;.pfx from-local-file /shared/tmp/&lt;pkcs name&gt;.pfx passphrase &lt;pkcs12 passphrase&gt;

Forum Discussion

01070317:3: sslprofile's key and certificate do not match

1 Reply

Recent Discussions

F5 loadbalancer not working

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Related Content

Publish Virtual-SSLProfile-Certicate Relation

Re: Management Certificate

Automate Let's Encrypt Certificates on BIG-IP

Automating ACMEv2 Certificate Management on BIG-IP

My Security+ Certification Journey