Key should be unencrypted and in PEM

Dear Community

I wanted to create a new certificate with the CCM and have created a CSR and a private key with Openssl.

Command: “openssl req -new -newkey rsa:4096 -nodes -keyout domain.key -out domain.csr”

Then save as PEM with the command: openssl rsa -in domain.key -text > domain.pem and verify this via "openssl rsa -in domain.pem -noout -text and “openssl rsa -in domain.pem -check”. The key is not encrypted with a passphrase.

So what exactly is the problem with this error message? The CCM version used is

Many thanks and regards,

It doesn’t sound like you’re performing a workflow that Certify is used for. You wouldn’t need to manually create your own certificate request and you don’t strictly need to use OpenSSL unless you have some post-certificate work to perform that Certify couldn’t do otherwise.

EDIT: Some clarifications, removed old name.

1 Like

I agree with @jljtgr it sounds like you are trying to do something you wouldn’t normally need to do. Certify creates the private key and CSR for you.

Typically users just click, New Certificate, enter their domains (or select them from IIS) and click Request Certificate but it depends on whether you are trying to get certificates on a webserver or something else.

What is your objective and why are you using your own CSR?