Created on 06-30-2023 06:53 AM Edited on 02-07-2024 11:27 PM By Jean-Philippe_P
Description | This article describes key pair mismatch for local certificates. |
Scope | FortiOS. |
Solution |
If the CSR was not done on FortiGate, then a private key will be needed along with the password, if this is missing that is why an error appears regarding a key pair mismatch.
It is necessary to have a private key to import a server certificate in any appliance and the import method chosen is 'local Certificate' which requires a CSR (Certificate Signing Request) to generate from the FortiGate side (hold the private key in FortiGate) and then it is necessary to sign this CSR with public CA.
There are two methods for importing :
Also verify the encoding of CSR in the bottom right, if it says UTF-8-BOM then change it to UTF-8. Save the file and try again. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.