Certificate Type: Unknown
Article ID: CTX230197
Updated On:
Description
- Netscaler does not show the certificate in GUI.
- It can be seen only on CLI with error: certificate Type – unknown
Cert Path: cert.pem
Format: PEM
Status: Valid, Days to expiration:730
Certificate Expiry Monitor: ENABLED
Expiry Notification period: 30 days
Certificate Type: Unknown
- -- Certificate binding fails.
CLI Output :
nsroot> bind ssl vserver SSL_VIP -certkeyName Test_Cert
ERROR: Certificate is not a server certificate
Resolution
Need to check the Certificate details section.
While generating the SSL certificate on the Active Directory server, ensure to select the Certificate template as "Web Server" with Base 64 encoded.
Once created, ensure the "Enhanced Key Usage extension" shows either "Server authentication" or "client Authentication".
While generating the SSL certificate on the Active Directory server, ensure to select the Certificate template as "Web Server" with Base 64 encoded.
Once created, ensure the "Enhanced Key Usage extension" shows either "Server authentication" or "client Authentication".
Problem Cause
This is caused due to the incorrect Certificate template selected while generating the Certificate from the Internal Certificate Authority server(Active Directory)
Was this article helpful?
Yes
No
Powered by
