Hi everybody,
I've always been using Letsencrypt certificates with PWM 2.06.
I do not remember where I found the instructions to do it, but here is the small "manual" I wrote to do the job every three months:
----------------------------------
Update PWM certificate:
sudo certbot certonly --manual -d my_domain_here --agree-tos --rsa-key-size 4096 --preferred-challenges dns-01
then copy the generated certificates and create a PKCS12 this way:
openssl pkcs12 -export -out lencr.p12 -in fullchain?.pem -inkey privkey?.pem
then install the resulting PKCS12 certificate through the PWM web-ui:
Settings ⇨ HTTPS Server ⇨ HTTPS Private Key & Certificate
----------------------------------
This is what I've been doing in the past and it always worked.
Now, when I try to import the generated PKCS12 certificate I get an error when I click on "Save":
Configuration format error: error saving file: unexpected error
converting b64 privateKey to PrivateKey instance:
java.security.InvalidKeyException: Invalid RSA private key
I tried several times, changing some parameter here and there, but I always get this error or other errors.
Maybe something has changed in openssl? Or in Letsencrypt?
I don't know what to do, I still have a few days before the certificate expires but I'm out of ideas...
Thank you in advance for any help
Cris