Certificate to be imported into another device


#1

Hey everyone

I’m currently trying to generate a certificate that I want to use on my F5 system for remote access. The web server is running on the F5 device which does not have access to either git or python. Therefore I would like to know if there is a way to retrieve the certificate and private key so I can install it on my big-ip device. I would prefer to receive a password protected .pfx file.

I have tried to generate the certificate on an IIS server using the guides from https://github.com/ebekker/ACMESharp/wiki/Example-Usage but I don’t seem to be able to get it right.

First off the URL is not located on that server but I created a “dummy” site but that did not work either.

Is there a simpel way of doing this? I can generate the CSR on the F5 device in order to increase the security.

Thanks in advance!


#2

Maybe you need to use manual mode? I saw this blog post linked in another thread: https://www.tty1.net/blog/2015/using-letsencrypt-in-manual-mode_en.html

Other thread: Documentation for manual mode


#3

@iamtew - Thanks for the reply. I actually got it working using the Example-Usage. The problem was that I actually needed to have a site that was accessable from the Internet on port 80. So I installed an IIS server and opened up the required ports.

Once I received the certificate I could easily just export it as a .pfx file which I imported to the F5. I’m currently working on a way to automate this.

Thanks!