Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
New Contributor

Can't upload self signed certificate: Incorrect certificate file key size for CA/LOCAL/REM

I am trying to generate self signed certificate/key, using openssl (1.1.0h) and following procedure:

openssl genrsa -aes256 -out fgtssl.key 2048

openssl req -new -key fgtssl.key -out fgtssl.csr

openssl x509 -req -days 365 -in fgtssl.csr -signkey fgtssl.key -out fgtssl.crt


When attempting to import into Fortigate (v6.0.3 build0200 KVM),  getting "Incorrect certificate file key size for CA/LOCAL/REM" .


I would like to configure IPSEC VPN dialup using own generated certificates.

What is wrong with the certificate ?



New Contributor

IT turned to be licensing issue.

It works just as expected.

New Contributor

I'm using Fortigate VM evaluation version, is this a reason why I can't upload new certificate to the firewall?

New Contributor III

it seems the problem related with eva license cause is stuck with this error in my lab and i'm sure my certificate and private key format is correct!

They say the empty can rattles the most!
They say the empty can rattles the most!

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Top Kudoed Authors