Citrix ADC - Error: "Invalid private key, or PEM pass phrase required for this private key" on FIPS device

Citrix ADC - Error: "Invalid private key, or PEM pass phrase required for this private key" on FIPS device

book

Article ID: CTX322728

calendar_today

Updated On:

Description

When trying to export a PFX file from a certificate that has already been uploaded to the ADC, we get the error "Invalid private key, or PEM pass phrase required for this private key", even after making sure the correct certificate and private key is selected, as well as entering the correct certificate password.


image.png

Resolution

If a PFX file needs to be created to be uploaded to XenMobile/Citrix Endpoint management, it needs to be created beforehand, it cannot be exported from the FIPS ADC.

Problem Cause

This is an expected behavior as when a certificate is uploaded to a FIPS appliance, it automatically encrypts the certificate and private key, making it impossible to export a PFX file.

Additional Information

Citrix ADC FIPS Compliance/Validation FAQ: https://support.citrix.com/article/CTX284897
Powered by Wolken Software