Operational Defect Database
BugZero found this defect 282 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 1327649
Invalid certificate order within cert-chain associated to JWK configuration
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP APM
Affected releases:
16.1.3
16.1.3.1
16.1.3.2
16.1.3.3
16.1.3.4
16.1.3.5
16.1.4
16.1.4.1
16.1.4.2
16.1.4.3
17.1.0
17.1.0.1
Fixed releases:
No fixed releases provided.
Description:
Symptoms ... An error occurs while validating the certificate and certificate chain in JSON web key configuration: General error: 01071ca4:3: Invalid certificate order within cert-chain (/Common/mycert.crt) associated to JWK config (/Common/myjwk). ... in statement [SET TRANSACTION END] ... Impact ... You are unable to create a policy with key configuration for OAuth when the certificate chain contains more than two certificates. ... Conditions ... Issue occurs when the certificate chain contains three or more certificates. ... The proper order in issuing: endpointchild | endpoint | intermediate | ca ... Workaround ... Note that there is no impact when the certificate chain order is valid and contains only two certificates in the chain. ... Fix Information
