OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: mahescho on December 14, 2018, 08:17:41 am

Title: Using intermediate certificate issued by internal PKI
Post by: mahescho on December 14, 2018, 08:17:41 am

Hi,

I've an internal PKI and created an intermediate certificate for my Opnsense with:

Code: [Select]

X509v3 Key Usage:
Certificate Sign, CRL Sign
Netscape Cert Type:
SSL CA, S/MIME CA, Object Signing CA

and imported the root certificate and the intermediate certificate with the private key. When I try to issue a server or client certificate using the intermediate certificate I get:

Code: [Select]

The following input errors were detected:

openssl library returns: error:0E06D06C:configuration file routines:NCONF_get_string:no value
openssl library returns: error:0E06D06C:configuration file routines:NCONF_get_string:no value
openssl library returns: error:0E06D06C:configuration file routines:NCONF_get_string:no value
openssl library returns: error:0E06D06C:configuration file routines:NCONF_get_string:no value
openssl library returns: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch

How to fix this?

TIA

Title: Re: Using intermediate certificate issued by internal PKI
Post by: mahescho on December 18, 2018, 12:16:26 pm

https://github.com/opnsense/core/issues/3048