The server you are on runs applications in a very specific way in most cases. If you have made changes to the file ownership on your own through SSH please reset the Owner and Group appropriately. The server generally expects files and directories be owned by your specific user cPanel user.
Some of these are easier to spot and correct than others.
Choose the PKCS#12 file generated in the previous section, create a passphrase and enter the password for the PKCS#12 file (letters and numbers ONLY).ĥ.There are a few common causes for this error code including problems with the individual script that may be executed upon request. Go to the "Import an existing certificate" option. TIP: Use the CA followed by the expiration date of the certificate e.g. Login into the appliance and navigate to System > Certificates > Generate/Import Importing the PKCS#12 file to the ES applianceġ. Alternately, the certificate converter on can be usedĬAUTION: Using the converter is not recommended due to exposure of the private key to the internet NOTE: Edit the command with the appropriate information: certificate.pfx is the name of the converted certificate, privatekey.txt is the file generated in step 2, certificate.crt is the certificate generated by the CA, CACert.crt are the intermediate certs generated by the CAĦ. Openssl pkcs12 -export - certificate.pfx -inkey privatekey.txt - certificate.crt - certfile CACert.crt From the command prompt, navigate to the openssl application as noted above and type or copy/paste the following to convert to PFX.
Download the necessary intermediate and root certificates.ĥ. Submit the my_csr.txt file to a Certificate Authority.Ĥ. Once the information is entered, two files will be created and placed in the C:\openssl\bin directory, my_csr.txt and privatekey.txt.
Enter the information appropriate to the organizationĢ. Req -new -newkey rsa:2048 -nodes -keyout privatekey.txt -out my_csr.txt -config openssl.cnfġ. Type openssl and press Enter, then paste the following command at the next prompt and move on to Generating the PKCS#12 file. Open a command prompt & type or copy/paste cd c:\openssl\binĥ. KeyUsage = nonRepudiation, digitalSignature, keyEnciphermentĤ. OrganizationalUnitName = Organizational Unit Name (eg, section) StateOrProvinceName = State or Province Name (full name)Ġ.organizationName = Organization Name (eg, company)Ġ.organizationName_default = Test Bed USA NOTE: Edit the alt_names section to include any SAN names that are needed, no other sections need to be edited at this timeĭistinguished_name = req_distinguished_nameĬountryName = Country Name (2 letter code) After installation completes, copy and paste the following into a text editor and save as openssl.cnf to C:\openssl\bin Go to and download the openssl-0.9.8h-1-setup.exe file.Ģ. Openssl req -out my_csr.txt -new -newkey rsa:2048 -nodes -keyout privatekey.txtġ. Type in the following command (or paste) The names of the CSR and privatekey (in italics) can be adjusted accordingly, but the file type needs to remain the same. The first step is to generate a private key which can be done either in Linux or Windows. This article contains the steps required for generating a PKCS#12 file for import on an Email Security appliance. Copy URL The link has been copied to clipboard.Content Filtering Client Control access to unwanted and unsecure web content.Capture Client Stop advanced threats and rollback the damage caused by malware.Cloud Firewall (NS v) Next-generation firewall capabilities in the cloud.Cloud App Security Visibility and security for Cloud Apps.Email Security Protect against today’s advanced email threats.Switches High-speed network switching for business connectivity.Wireless Access Points Easy to manage, fast and secure Wi-FI.Secure Mobile Access Remote, best-in-class, secure access.
Cloud Edge Secure Access Deploy Zero-Trust Security in minutes.Capture Security appliance Advanced Threat Protection for modern threat landscape.Capture ATP Multi-engine advanced threat detection.Network Security Manager Modern Security Management for today’s security landscape.Security Services Comprehensive security for your network security solution.Next Generation Firewall Next-generation firewall for SMB, Enterprise, and Government.