Device Trust

A group of F5 DNS servers must exchange keys to establish a trusted mechanism for HA communications and Config Sync. In this task we will establish device trust between gtm1.site1 and gtm1.site2. For more information on device trust, please refer to the link below.

More information on Device Trust

../../../_images/establish_trust.png

  1. Launch Putty and login to gtm1.SITE1

    Run the following command, and when prompted for a password use “default”

    TMSH

    bigip_add

    ../../../_images/putty_gtm1_site1.png

  2. Observe the exchanged certificates

    On gtm1.site1 navigate to: DNS ›› GSLB : Servers : Trusted Server Certificates

    ../../../_images/gslb_dataceter_servers_trusted_certificates.png

  3. Observe the server status

    On gtm1.site1 navigate to: DNS ›› GSLB : Servers : Server List

    ../../../_images/green_green_green.png

Note

If your server list is not green, do not proceed to the next step. Please confirm that the device trust is complete and troubleshoot the issue.