Invalid X509 certificate provided : error 20 at 0 depth lookup:

thorzeen · October 09, 2024, 07:47:32 PM

Upgrading 24.7.6 and cannot create certificates using opnsense CSR and my 2 tier CA
Also seems that SANs not being applied DNS or IP

MrPaul · November 06, 2024, 06:11:13 AM

I also ran into this. When generating a CSR there were no SAN in the extensions. One I did sign the cert (externally) I could find no way to set the certificate without getting the error 20 error. I tried just the cert, the cert+intermediate, and the cert+intermediate+root,
(all cat together), all PEM. Certs generated with the same process have worked elsewhere.

24.7.7

awkm80@gmail.com · March 19, 2025, 01:25:20 PM

Hi,
I had the same problem. Finaly i had to go to: System > trust > Authorities and import my CA Certificates from external CA (root + Intermediate). You can import them without private keys. After that you can go to: System > trust > Certificates and import your singned Server Request.

Invalid X509 certificate provided : error 20 at 0 depth lookup:

thorzeen

October 09, 2024, 07:47:32 PM

MrPaul

November 06, 2024, 06:11:13 AM #1

awkm80@gmail.com

March 19, 2025, 01:25:20 PM #2