Hello,
I want to replace the self signed certificate with a official signed certificated. I use the prtgcertimporter and this tutorial: https://www.paessler.com/support/how-to/ssl-certificate
Unfortunately the importer always says: no valid chain found.
I have one file prtg.key, with windows line breaks (pem). The key is not encrypted.
-----BEGIN PRIVATE KEY----- .... -----END PRIVATE KEY----- I have one file prtg.crt, with windows line breaks (pem). -----BEGIN CERTIFICATE----- .... -----END CERTIFICATE----- I have one file root.pem, with windows line breaks (pem). -----BEGIN CERTIFICATE----- .... (SubCA) -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- .... (PolicyCA) -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- .... (RootCA) -----END CERTIFICATE-----
I starting the certimporter and choose the directory with the three files.
Reason(s):--> Certificate for SUBCA signed by <Issuer> is not for server authentication --> Certificate for prtg.mydomain.de signed by <Issuer> - usable for server authentication the certificate chain is invalid the directory contains no valid certificates.
Whats wrong?
Article Comments
Hello Erhard,
I sent the information to the support on 01.03.2019. Did you received them?
Mar, 2019 - Permalink
Hello Christian,
Not that I recall, I've looked now for emails from the address you have used to register in the knowledgebase, but there were no recent emails from your email address. Please send again and mention this thread in particular in the subject or body of the email.
Thank you,
Erhard
Mar, 2019 - Permalink
Solution: You need to import the root certificate in the windows certificate store (trusted root certification authorities), if the root ca is a member of a private pki.
Mar, 2019 - Permalink
Hi Christian,
For further assistance, please send us an email to support@paessler.com with screenshots from the certificate's "Details" and "Certificate Chain" tabs when double clicking on it.
Thank you & kind regards,
Erhard
Feb, 2019 - Permalink