How can I make BIG-IP device that using self sign certificate "trust" in my organize or just my computer?

Question

Hi&nbsp;
How can I make BIG-IP device that using self sign certificate "trust" in my organize or just my computer?&nbsp;
I think I seen SOL long time ago but I can't find it now.&nbsp;
Thank you&nbsp;

stephanmanthey · Answer

To trust a certificate it needs to fulfill the following criterias:  &nbsp;
requested hostname needs to match the common name (CN) in the certificate  the certificate needs still to be valid (not expired)  the certificate needs to be signed by a trusted certificate authority (CA)  
If the certificate is self signed it might be possible to import it into your webbrowser to avoid the related error messages. But the CN and expiration date need to fit.&nbsp;
There is an option to craft a certificate signing request (CSR), to be exported and signed by a corporate certficate authority. The signed certificate can be imported. Due to trust to your corporate CA the browser should now accept the cert (see topic 3).    &nbsp;

kridsana · Answer

Thank you very much&nbsp;

Forum Discussion

How can I make BIG-IP device that using self sign certificate "trust" in my organize or just my computer?

2 Replies

Recent Discussions

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

Related Content

Getting Started with Automating Deployment of MCN & Edge Compute

Demo Guide: Edge Compute with F5 Distributed Cloud Services (SaaS Console, Automation)

Re: Management Certificate

Automating ACMEv2 Certificate Management on BIG-IP

How to read "Trusted Certificates Authorities" on an IRule ?