Distributed Cloud Services
API Docs Knowledge Base Training

TLS Load-balancer certificate issuance via CSR

A Silverline "feature" (Certificate keeper) that would be nice to have in F5XC would be an additional way to install a certificate on a load-balancer with F5XC providing a CSR. Steps:


  • customer choose this option in the load-balancer form

  • they’re prompted to enter the CSR/certificate details (country name, state, ...)

  • when the load-balancer is created, they get to download the CSR

  • they send the CSR to a CA and receive a certificate in return

  • they upload the certificate in F5XC console in the load-balancer settings


This would allow customer to have a custom certificate, without the private key leaving F5XC or their premises at any point in time.

  • Étienne Labaume
  • Mar 31 2023
  • Planned
Console / Security
  • Attach files
  • Leon Seng commented
    15 Apr 02:33

    I have a customer who requested for this as well, stating that the private key should not leave the platform, as that is against their security best practice.

    ×

    Attachments Open full size

Related ideas

© 2022 F5, Inc. All rights reserved | Trademarks | Policies | Privacy | California Privacy | Do Not Sell My Personal Information