Tes_L
May 15, 2020Nimbostratus
Renew F5 BIG IP 11.5.4 Device Certificate & Change Certificate Key to 2048 bits
We are planning to update our Device Certificate and our setup: 2 Big IP 11.5.4 (Sync Group Peers).
1) When we renew the self-signed device certificate through GUI, will it include the certificate key? or How can we change the certificate key to 2048 bits? Currently, we have this warning - "This system's device certificate uses a key size that is considered insecure. It is strongly recommended that you use a certificate with a key size of at least 2048 bits."
2) Will the login account disconnect when we renew the certificate through GUI?
3) Will the sessions on virtual servers disconnect when we renew the certificate or when we reinitalize the iQuery? or Is there a downtime on our customer's end?
Thank you for your help!