Please follow the documents below that might be of assistance to you :
The bundle will be imported successfully if the certificate chain is proper. The sirst document shows you what is the proper certificate chain.
The second speaks about using a text editor to create a proper certificate chain if the certificate bundle signed by a CA is does not have a proper chain to be imported into PA firewall.
Hope this helps.
It seems that the Mercedes_Bundle does not have the proper chain. Can you please refer to the documents I suggested in my previous post?
For you reference:
You need to export "Mercedes_Bundle" along with the key from the firewall. You can use PEM format and give it a passphrase. Once exported you should be able to open it in notepad. You will see following format :
-----BEGIN RSA PRIVATE KEY-----
-----END RSA PRIVATE KEY-----
Then open the root certificate in the notepad as well. You will NOT need private key of the root cert. Then go ahead and add root cert below RSA key.
So your order should be
If you have intermediate certificate in the chain, then
Once you have all in one text file, save it and import it to the firewall. While importing you will need to provide key file, this will be the same cert that we just created (that means brose same cert file twice). Passphrase would be same that you used to export.
Follow following document to achieve that :
Once successfully imported, do a commit one more time. Warning should go away. Hope this helps. Thank you.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!