Hi,
I am completing the initial stages of a Fortinet to Sophos XG 230 firewall and have run into the latest issue. Currently the domain has a public record for vpn.domain.co.nz (example) and I have enabled remote user portal access in XG Firewall Device Access. This is accessible and working successfully remotely using https://vpn.domain.co.nz/ which directs to vpn.domain.co.nz/.../login.jsp
I need to replace the current 'ApplianceCertificate' with a CA issued SSL certificate, in this case NameCheap.com.
I have followed the steps to complete the following, Generate a CSR within Certificates menu:
- Giving a year validity
- 2048 key length
- Typing an encryption key
- Setting certificate ID as an email address and populating the company address information etc
- Common name of vpn.domain.co.nz
This process has successfully given me a .CSR, .KEY and a password.txt file which lists the encryption key I input. I've then given the CSR to my authority (namecheap) which has returned me a single .cer file.
When i go back into the Certificates menu and select:
- 'Upload certificate'
- Type a name for the certificate
- Select the certificate and format of .cer
- Select the .key file that was originally created
- Enter the passphrase
I get the following error:
This thread was automatically locked due to age.
