Knowledge Doc: Unable to import wildcard certificate

 
0 Likes

Summary
When we try to import wildcard certificate using Import certificate option it pops up an error: "Failed to read certificate"

Products
Privileged Account Manager (PAM, Privileged User Manager)

Environment
NetIQ Privileged Account Manager 4.2.1
NetIQ Privileged Account Manager 4.3

Situation
When we try to import wildcard certificate under Settings -> Server Settings -> HTTPS server -> Import Certificate we get an error as below:

Error in unifid.log located in location /opt/netiq/npum/logs/unifid.log :

Error, spf_ssl_set_certificate_chain : Certificate and private key do not match.

Cause
Trying to import invalid certificate and private key pairs.

Resolution
We need to use the "Public/Private Key Pair" option instead of "Import Certificate" option

Additional Information
Third party certificate support for PAM console access is added from 4.2.1 and above.
Docs link: https://www.netiq.com/documentation/privileged-account-manager-42/npam_421_releasenotes/data/npam_421_relea


Knowledge Base Article Link

05-May-2023•Knowledge
URL Name
KM000017087

Labels:

Knowledge Docs
Comment List
Related
Recommended