Quoting "Peter J. Holzer" <[email protected]>:
Hello,
we tried to renew an SSL certificate for one of our Roxen servers, but
it rejected the new certificate with the message:
Certificate and private key do not match.
Instead of renewing we also tried to create a new key and certificate,
but that just got the same result.
I've checked the key file and the certificate file and the modulus and
public exponent are definitely the same. What else could there "not
match"?
The new certificates use SHA-256, while the old one used SHA-1. Maybe
there's a problem with that? But then I would have expected a message
like "hash doesn't match content" or something like that.
I have also upgraded from 4.5.241 to 5.4.66 (x86), but that didn't help
either.
Any ideas?
Dear Peter,
Just to be sure, did you use Roxen's SSL tools (see Tasks -> SSL) to
create the key pair / CSR?
IIRC, the last time I created certs for Roxen it was a bit picky and
did not except the keys generated via openssl.
Cheers,
Sascha
