Magnum_IP
Jun 08, 2011Nimbostratus
Certificate removed from ca-bundle between 10.2.0 and 10.2.1
This may be the wrong topic group for this one, if so apologies and please advise...
I was recently involved in an upgrade from 10.2.0 to 10.2.1. After upgrading we had issues with an HTTPS Virtual Server, connections were being reset. To cut a long story short it was due to the 'VeriSign Class 3 Public Primary Certification Authority - G5' certificate being removed from the ca-bundle in 10.2.1.
A bit of googling uncovered an f5 Known Issue doc (http://support.f5.com/kb/en-us/solutions/public/12000/700/sol12753.html) which states the cert was removed but there is not really enough detail there for me to really understand why.
My client has purchased a certificate signed by this CA cert, should I or should I not be importing it into the BIG-IP and assigning it to the Virtual Servers Client SSL Profile to get things back up and working? Has my client purchased the wrong kind of certificate?
Regards,
fergu5