FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
FortiKoala
Staff
Staff
Article Id 196039

Description

 

Private keys must be in RSA format and unencrypted.  Otherwise, errors will be generated when attempting to install the certificates and key in the Administration UI.

To review the private key file in Linux, type:


cat <filename>


If the key header looks like this:

-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQC2jNIpG/iak9WT
QvhfPZHNp1jKbmlEf4KnV27i4nbIYp6kWYUegH/I64G3Q8AnP1IBP4KQruPmhxZs


The key is not in the correct format and needs to be converted.

Scope

 

CentOS Version: v8.x and v9.x.


Solution

 

Convert the file to RSA format by running the following command (on a Linux server):


openssl rsa -in <old_file_name> -out  <new_file>

The header should now look like this:


-----BEGIN RSA PRIVATE KEY-----
MIIEowIBAAKCAQEAtozSKRv4mpPVk0L4Xz2RzadYym5pRH+Cp1du4uJ2yGKepFmF

 

Complete SSL Certificate upload using the newly converted private key file.

Related article:

Technical Tip: 'One or more certificates are invalid' error