Forum Discussion

senthil147_1421's avatar
senthil147_1421
Icon for Nimbostratus rankNimbostratus
Apr 17, 2018

GTM-LTM cert error

Team I have replaced the device certificate from self signed to intenral CA signed certificate - After the certificate replacement iquery stopped working. GTM shows all the LTM's are down - I have ran bigip_add also manually imported the device certificate along with root and intermediate certificate still no luck..

 

is there anything else to be done ?

 

Apr 17 16:24:27 GTM.name-1 iqmgmt_ssl_connect: SSL error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca Apr 17 16:24:27 GTM.name-1 err gtmd[32488]: 011ae0fa:3: iqmgmt_ssl_connect: SSL error: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (336151576)

 

2 Replies

  • Did you reinitiliaze the Iquery,

    Restart the gtmd and big3d daemons if not done.

  • Hello,

    You have to install LTM ca's certificates in GTM truststore, and GTM ca's certificates in LTM truststore. For ca certificate installation, go to:

    System > Device certificate > Trusted Device Certificates