Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
martin_ivanov
New Contributor

Can't upload self signed certificate: Incorrect certificate file key size for CA/LOCAL/REM

I am trying to generate self signed certificate/key, using openssl (1.1.0h) and following procedure:

openssl genrsa -aes256 -out fgtssl.key 2048

openssl req -new -key fgtssl.key -out fgtssl.csr

openssl x509 -req -days 365 -in fgtssl.csr -signkey fgtssl.key -out fgtssl.crt

 

When attempting to import into Fortigate (v6.0.3 build0200 KVM),  getting "Incorrect certificate file key size for CA/LOCAL/REM" .

 

I would like to configure IPSEC VPN dialup using own generated certificates.

What is wrong with the certificate ?

 

Martin.

3 REPLIES 3
martin_ivanov
New Contributor

IT turned to be licensing issue.

It works just as expected.

Lev
New Contributor

I'm using Fortigate VM evaluation version, is this a reason why I can't upload new certificate to the firewall?

m3ds0
New Contributor III

it seems the problem related with eva license cause is stuck with this error in my lab and i'm sure my certificate and private key format is correct!

They say the empty can rattles the most!
They say the empty can rattles the most!
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors