Before you install a software upgrade, you can verify the integrity and authenticity of the software image and ensure it is an unmodified and approved Riverbed image. The feature requires a public key in a certificate to verify the digital signature of the software image. The certificate is automatically installed on the SteelHead, but you can import an updated version, if needed.

During the verification process, the appliance compares the signature in the image with the Riverbed public certificate. If they match, the installation continues. If not, the system alerts you to a potential problem. As long as image signature verification is enabled, you cannot continue with an installation that cannot verify the image signature.

By default, image signature verification is on and should be disabled only when necessary. We recommend keeping the feature enabled at all times.

This configuration option is available:

Enables the verification of the integrity and authenticity of the software image to ensure it is an unmodified and approved Riverbed image.