FIPS SO & DO pwd forgotten

Question

Hey Folks,&nbsp;
Need your inputs again :)&nbsp;
I have a HA FIPS pair 8900 device, one of the F5 got faulty and just got RMA'ed.
But I'm not having the SO &amp; DO pwd now. Also I'm unable to load the UCS because of it.
What route should I follow now ? Should I reset a new set of SO &amp; DO pwds on scheduled window ?&nbsp;

jg · Answer

When you replace one system of a failover pair, instead of restoring the configuration by installing the UCS archive, F5 recommends that you configure basic networking on the replacement unit and synchronize the configuration from its peer. Since the master key is shared between units of a redundant pair, the configuration synchronization process will synchronize the original master key to the newly-installed device.
From: K9420: Installing a UCS file containing an encrypted passphrase.

anesh · Answer

you can try the methods outlined under section "Implementing a replacement unit in a device group after a system failure" in this Article&nbsp;

Forum Discussion

FIPS SO & DO pwd forgotten

2 Replies

Recent Discussions

Content type hearder charset=UTF-8

Web acceleration

Create a CSR and Key using the BigIP LTM GUI when renewing a certificate

Enterprise Security best practices with F5 WAF

Disk space full - what files, folders are safe to delete?

Related Content

FIPS license and fipsutil info

Forgotten Boa, Aurora botnet, Kerberos & Twitter - Nov 19th-25th - F5 SIRT - This Week in Security

FIPS SO & DO pwd forgotten

DNSSEC – the forgotten security asset?

FIPS SO & DO pwd forgotten