ActiveIQ Unified Manager fails to install an externally generated certificate
Applies to
ActiveIQ Unified Manager (AIQUM) 9.10 and later
Issue
- When installing an externally generated certificate in AIQUM, the certificate install fails with the message:
Failed to install certificate: Input certificate's public key differs from the existing certificate's public key. The keys must match.
- The certificate may also fail to install with the message that the key is still encrypted:
Failed to install certificate: The entered private key is encrypted. Only an unencrypted RSA or EC private key is accepted.
- In the
ocumserver.log
, the one of the following messages is seen:
2023-01-12 10:12:36,373 ERROR [umadmin] [default task-2140] [c.n.d.a.c.s.https.HttpsManager] The public key of the certificate generated from the CSR within the product does not match with the public key of the existing certificate
2023-02-02 15:30:21,478 ERROR [umadmin] [default task-1805] [c.n.o.r.m.e.GlobalExceptionHandler] The entered private key is encrypted. Only an unencrypted RSA or EC private key is accepted.
For the ocumserver.log
location, review the kb:
What are the notable log files and their respective locations for Active IQ Unified Manager?