FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
FortiKoala
Staff
Staff
Article Id 194258
Description
When attempting to install a new SSL certificate and private key via the Administration UI, a message appears indicating the private key is invalid.





Scope
Version: 8.x

Solution
1.  Review the private key file using a text editor.  Alternatively, if in Linux, the file can be viewed by running the command:
cat <filename>


Key Header looks like this:

-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQC2jNIpG/iak9WT
QvhfPZHNp1jKbmlEf4KnV27i4nbIYp6kWYUegH/I64G3Q8AnP1IBP4KQruPmhxZs


Note the header does not have "RSA" in it.  This is an indication the Key is not in the correct format and needs to be converted
to RSA format. 

2. Convert the private key file.  For instructions, refer to the related KB article below.

Once properly converted, the header should look like this:

-----BEGIN RSA PRIVATE KEY-----
MIIEowIBAAKCAQEAtozSKRv4mpPVk0L4Xz2RzadYym5pRH+Cp1du4uJ2yGKepFmF


3.  Complete SSL Certificate upload using the newly converted private key file.





Related Articles

Technical Note: Convert SSL private key to RSA format

Technical Note: Private Key error when installing renewed SSL certificate

Technical Tip: 'One or more certificates are invalid' error

Contributors