You attempt the update the Symantec Endpoint Protection Manager (SEPM) certificate using the Manage Server Certificate Wizard and providing a certificate file and private key file. When you complete the steps to browse to the certificate file and private key file, and then click Next, you receive the following error: "Invalid private key file [0x840b0000]".
Error "Invalid private key file [0x840b0000]"
The private key is invalid or encrypted.
Validate the private key and make sure that it is in PEM format. If the private key is encrypted with a password, use the following command to create an unencrypted copy of the private key:
openssl rsa -in [yourencryptedprivate.key] -out [decryptedprivate.key]
A copy of openssl.exe is on the SEPM, in the following folder:
"[SEPM Install Folder]\apache\bin"
Once you have created a new unencrypted copy of your private key, you may attempt to complete the wizard again.
For more information about safely updating your SEPM certificates, please see the Related Articles section.