Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

  1. Kemp Support
  2. Knowledge Base
  3. Security

Trouble renewing certificates without private key

Updated

 

Information

 

Summary:

Trouble renewing certificates without private key.
Environment:

Product: LoadMaster

Version: Any

Platform: Any

Application: Any
Question/Problem Description:
  • After acquiring new .PEM certificates for ones about to expire, and attempting to "Replace Certificate" on the LoadMaster results in “Invalid Format Key” error messages.
  • Do not have the private key to import for the new certificate.
Steps to Reproduce:  
Error Message:  
Defect Number:  
Enhancement Number:  
Cause:
  • The private key is needed when replacing an SSL certificate on the LoadMaster.
Resolution:
  • When replacing a certificate, you would also need to specify the private key along with the certificate file itself. In the case of a certificate signing request (CSR) generation on the loadmaster, we ask that you save the private key once generated so it can be used later for future cert replacements.
  • In the case of not having the old private key on hand, it is recommended to generate a new certificate signing request, and save the generated private key this time. Then, send the new generated unsigned certificate request to the Certificate Authority (CA) for it to be signed.
Workaround:  
Notes: https://support.kemptechnologies.com/hc/en-us/articles/115003853166-How-To-Import-SSL-Certificates-To-Your-LoadMaster

Comments

In this document