Why can't I verify my certificate in PAM even if I know it is correct ?

book

Article ID: 125477

calendar_today

Updated On:

Products

CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager (PAM)

Issue/Introduction



I followed the documented procedure for requesting a certificate. I have verified by means of the corresponding openssl commands that the certificate I received from the Certification Authority does correspond to the key generated in PAM and to the csr I submitted.

However, even if I load the certificate to PAM and I run the verification steps, I keep getting an error that the certificate is not verified. What may be the problem ?

Environment

CA PAM all versions

Resolution

A common trivial reason for this problem may be certificate name mismatch. That is, if my key name is abc.key, the certificate generated by the Certification Authority must be renamed to abc.cer (or csr) before being imported to PAM. If you don't know what the key name was, you can go to Configuration/Security/Download, check there the keynames listed and identify yours.