If you generated the key and CSR with openssl, you probably have both the private key and the signed certificate from your CA.
Just import the key and cert, forget about the saved key, it will be overwritten once you import cert+key.
BTW: The message suggests that the private key does not match the signed certificate. If you imported both key+cert, these do not belong to each other.
Aruba TAC, or your partner have done this more often, it may help to seek assistance.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check
https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------
Original Message:
Sent: Jul 22, 2021 07:41 AM
From: Ciaran Byrne
Subject: ClearPass HTTPS Certificate Help
I generate private key and csr using openssl, had the csr signed and then tried importing the cert along with the private key to CPPM.
I am now getting the following error - see attachment.
Do I need to clear an private key on the system that is associated with a previous csr?
------------------------------
Ciaran Byrne
Original Message:
Sent: Jul 22, 2021 07:25 AM
From: Ciaran Byrne
Subject: ClearPass HTTPS Certificate Help
Hey.
there is no change on certificate ?
No change. I've attempted multiple times.
do you have check it is for RADIUS / HTTPS ?
How do you mean? I'm importing it as a https cert.
I guess I could use openssl to generate csr and private key and then import both together. But I'd be interested to know what i'm doing wrong. I have seen postings in these forums about this issue with no real answer given.
thanks for your help.
------------------------------
Ciaran Byrne
Original Message:
Sent: Jul 22, 2021 06:40 AM
From: Alexis La Goutte
Subject: ClearPass HTTPS Certificate Help
Strange,
there is no change on certificate ?
do you have check it is for RADIUS / HTTPS ?
------------------------------
PowerArubaSW : Powershell Module to use Aruba Switch API for Vlan, VlanPorts, LACP, LLDP...
PowerArubaCP: Powershell Module to use ClearPass API (create NAD, Guest...)
PowerArubaCL: Powershell Module to use Aruba Central
PowerArubaCX: Powershell Module to use ArubaCX API (get interface/vlan/ports info)..
ACEP / ACMX #107 / ACDX #1281
Original Message:
Sent: Jul 22, 2021 04:48 AM
From: Ciaran Byrne
Subject: ClearPass HTTPS Certificate Help
Hi there,
Did you ever get a solution to this issue. I seem to have the same problem.
I generate a CSR, get the message "Private Key is stored in the system. You can now upload certificate alone without using Private Key."
No private key is exportable at this stage.
I get the CSR signed and then try to import "as Certificate (w/ chain), PEM encoded" and the option on CPPM "Upload Certificate and Use Saved Private Key".
But when I try to upload the certificate I get an error: "Private Key File is not in the system."
CPPM doesn't seem to be linking up the saved private key with the cert that's being imported.
Maybe i'm missing something fundamental?
thanks
------------------------------
Ciaran Byrne
Original Message:
Sent: Aug 27, 2020 05:17 PM
From: Kevin Morris
Subject: ClearPass HTTPS Certificate Help
This seems almost silly, but I am unable to upload a server certificate to my ClearPass server. Running ClearPass v6.9.2. I generated the CSR from ClearPass and it popped up a little message:
"Private Key is stored in the system. You can now upload certificate alone without using Private Key."
But when I try to upload the certificate I get an error: "Private Key File is not in the system."
Seems like it should be a pretty straight forward import process, but it's not working. Is anyone else having this issue?