Error: " Issuer certificate mismatch " when installing server certificate from CLI or GUI
Article ID: CTX226986
Updated On:
Description
While trying to install ssl certificate from CLI or GUI, error: " Issuer certificate mismatch, or PEM pass phrase required for this private key"
Resolution
The problem you are experiencing with the certificate is related to a known issue with some CA agencies when exporting the pfx file from Windows server and selecting the option "All Files in the certificate", to avoid the error we had to re-export the PFX without this option and import the pfx and install the PEM file later.
To solve this issue uncheck the "Include all certificates in the certification path if possible:
Final windows should look like:
To avoid this issue export PFX without selecting this option.
To solve this issue uncheck the "Include all certificates in the certification path if possible:
Final windows should look like:
Problem Cause
When exporting the pfx file from the Windows server the option "Include all files in the certificate" makes the certificate pair and issuer to show a missmatch from the Netscaler SSL side.To avoid this issue export PFX without selecting this option.
Issue/Introduction
Error: " Issuer certificate mismatch " when installing server certificate from CLI or GUI
Additional Information
https://support.citrix.com/article/CTX134233
Was this article helpful?
Yes
No
Powered by
