Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 28 subscribers
  • Views 541 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Comodo SSL Certificates from Domain.com

Stu McCluskey

Hi,

I've recently purchased SSL an SSL cert from Domain.com and when I received their files there was an intermediate certificate as well as a root certificate.  Which am I supposed to load onto the XG for the admin/captive portal?

The certificates are both .crt files so I tried converting the root certificate to a .pem and uploading it but there is a red cross in the Authority column.  So, before I start to mess anything up, I thought I would ask here for advice first. 

I read the article on uploading certificates from a CA but the article assumes you have a single certificate file ready to go and there is no mention of intermediate certificates.



This thread was automatically locked due to age.
Parents
  • 0

    Hello Stu,

    it is important to have the private key for your certifiacte as well. Either you import this in two seperate files files like "mycertificate.crt" and "mycertificate.key" or you have a .p12 or .pfx file with a password. If intermediate certs or a Root-CA are missing, you can import them afterwards.

Reply
  • 0

    Hello Stu,

    it is important to have the private key for your certifiacte as well. Either you import this in two seperate files files like "mycertificate.crt" and "mycertificate.key" or you have a .p12 or .pfx file with a password. If intermediate certs or a Root-CA are missing, you can import them afterwards.

Children
  • 0 in reply to jprusch

    I have the .key file to go with them.  How would you import from the .crt and the key file?  There is no option for .crt.

    Also, which .crt should I be using?  The root or the intermediate?

  • FormerMember
    0 FormerMember in reply to Stu McCluskey

    Hi ,

    Thank you for reaching out to Sophos Community.

    Upload the root certificate under Certificates > Certificate authorities

    And then try uploading user/intermediate certificate under Certificates > Certificates.

    As mentioned you do have a .key file. Suggest uploading both root and user/intermediate certificates with the private key.

    Note: You may try changing the certificate filetype to .pem or .cer

  • 0 in reply to FormerMember

    Thank you for that reply.  Hopefully this is my last question:

    On the certificate authorities page I select PEM, I select the certificate and I select the key file but then another box appears asking for the CA Passphrase.  If I try to leave this blank it says that I must provide both a key file and CA passphrase.  I was not provided a passhrase by the CA and when I emailed them they say that their SSL certificates aren't generated with a passphrase required.

    So how do I get around this as there is no passphrase to enter but the XG demands one?