Messages

No, private key of the certificate for our own domain.

Okay, then I am obviously missing something. I need to add the SSL certificate to our router. I remember it went smothly last time, but now we renewed it and I need to switch them. So how do I install the new certificate? If I just dump the key and the certificate and try to use it as UI certificate I am getting an error that the certificate is self-signed and I can't get into the GUI.

Thanks guys for trying to help me out.

Eventually I managed to install after first deleting all the certificates from Trust->Certificates. Then I added the Sectigo Certificate and temporarily created a webui certificate for the router.

After that I wanted to add our new certificate to Trust->Certificates. I added the private key and certificate (it's wildcard certificate) and the system just recognized it as self-signed certificate. I wanted to manually switch issuer to Sectigo, however I am getting a new error

Code Select Expand

missing CA key

I am having problems installing new certificate to our OPNSense machine. The certificate is generated by Sectigo. I cannot add their CA certificate (in System -> Trust -> Authorities), all I get is a pointless error that I should check the logs. The logs say something like this:

Code Select Expand

[OPNsense\Trust\Cert:cert.a09c548b-ba6b-4a28-a32f-65a4d96c5183.caref] Please select a valid certificate from the list{66ad4fb310ccb}

Before you ask, yes it is PEM format certificate and it is Sectigo CA certificate file...

Thanks guys.