An LTM Specialist has just captured trace /var/tmp/trace.cap for site www.example.com while listening on virtual address 10.0.0.1:443 configured on partition
ApplicationA. The data payload being captured is SSL encrypted.
Which command should the LTM Specialist execute to decrypt the data payload?
To decrypt the SSL data payload captured in the trace file, the decryption process requires the private key associated with the SSL certificate. The command must specify the correct path to the private key file in the proper partition directory. Since the virtual address is in the 'ApplicationA' partition, the correct private key path must be tailored to 'ApplicationA'. Therefore, the command should use the private key stored in the 'ApplicationA' partition, making the correct option: ssldump -Aed -nr /var/tmp/trace.cap -k /config/filestore/files_d/ApplicationA_d/certificate_key_d/:ApplicationA:www.example.com.key_1.
The correct answer should be D?
no ,The correct answer should be B
D is correct, see my lab: I created a partiton teste_partition and after into the partiiton a certificate, so when I try create a client ssl profile on teste_partition I don't see Common's certicate, em virse versa.
Technically, the key can be stored in Common or ApplicationA partition, so B or D would work. But I think they are implying that the key exists in ApplicationA partition or why else mention that the VS is in that partition? Bad question.
Answer should be D. Partition name must be a part of the path to the key. https://support.f5.com/csp/article/K10209
In my opinion, it could be B or D. You can store key and certificate in /Common or /ApplicationA and use it from /ApplicationA
Note: Beginning in BIG-IP 11.x, the SSL profile keys are stored in the /config/filestore/files_d/<partition_name>_d/certificate_key_d/ directory.
D - Correct BIG-IP 11.x - 16.x: /config/filestore/files_d/<partition_name>_d/certificate_key_d/ https://support.f5.com/csp/article/K10209