Forum Discussion
nitass
Employee
if key is changed when renewing, i think you have to create new certificate and key names and then assign the new certificate and key to clientssl profile. the change could affect only new connection. the existing connection should use the old configuration.
sol13253: Configuration changes to local traffic objects do not affect existing connections
http://support.f5.com/kb/en-us/solutions/public/13000/200/sol13253.html
omniplex
Apr 24, 2014Nimbostratus
I've also found that depending on the version that if the cert and key are already loaded into memory, you need to do something to cause the files to be re-read. Either changing the profile to something else and then back or reloading the configuration.
Depending on your setup, you could update the standby device if this is in an HA pair, and fail over to that device and then update the previous device.