Created on 09-27-2018 08:15 AM Edited on 03-14-2024 10:10 PM By Anthony_E
Description
Private keys must be in RSA format and unencrypted. Otherwise, errors will be generated when attempting to install the certificates and key in the Administration UI.
To review the private key file in Linux, type:
cat <filename>
If the key header looks like this:
-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQC2jNIpG/iak9WT
QvhfPZHNp1jKbmlEf4KnV27i4nbIYp6kWYUegH/I64G3Q8AnP1IBP4KQruPmhxZs
The key is not in the correct format and needs to be converted.
Scope
CentOS Version: v8.x and v9.x.
Solution
Convert the file to RSA format by running the following command (on a Linux server):
openssl rsa -in <old_file_name> -out <new_file>
The header should now look like this:
-----BEGIN RSA PRIVATE KEY-----
MIIEowIBAAKCAQEAtozSKRv4mpPVk0L4Xz2RzadYym5pRH+Cp1du4uJ2yGKepFmF
Complete SSL Certificate upload using the newly converted private key file.
Related article:
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.