Import LetsEncrypt authority certificate to USG110
Hello i create and import new Lets Encrypt certificate to older USG110 firewall,
but when i try import authority certificate from https://letsencrypt.org/cs/certificates/
i have problem ...
I Can import ISRG Root X1 certificate and Let’s Encrypt R11.
But my certificate is R10.
When i try import R11 type i get message :
errno: -17018
errmsg: PKI certificate already exists.
I try reboot USG, delete R11 nothing help.
Can anybody help me with import authority R10 for LetsEncrypt ?
Very thanks
Best Answers
-
Very thanks Zyxel for help, problem was with pfx certificate. (p12 could be imported correctly)
0 -
Hi @kyssling
Yes, the certificate requires using the extra private key and should be imported as a .p12 file. This allows us to use the extension tool to modify the certificate as needed.
I'm glad to hear that this is helpful!
Kay
See how you've made an impact in Zyxel Community this year!
0
All Replies
-
Hi @kyssling
To assist you better, could you please provide the following information?
- Which certificate would you like to use for HTTPS certification?
- Could you share the certificate you obtained from Let's Encrypt via private message?
- Please also specify the requirements you would like to achieve with this certificate.
Kay
See how you've made an impact in Zyxel Community this year!
0 -
Hi @kyssling
Thank you for sharing more details and the R10/R11 certificte for us through private msg.
To resolve the issue, you can follow the steps below:
- Please ensure that you import the ISRG Root X1, R10, and R11 certificates into the Trusted Certificates section. This completes the full certificate chain required.
- After importing those, you can then upload your purchased CA certificate into the My Certificate section.
Currently, we’ve only received your R10 and R11 certificates. Please download and import the ISRG Root X1 certificate from the Let's Encrypt website (
) into the Trusted Certificates section and see if the issue is resolved.If the issue persists, kindly provide us with your purchased certificate, including the private key, so we can further investigate.
Kay
See how you've made an impact in Zyxel Community this year!
0 -
Unfortunately there is a problem, I will send a private message ….
0 -
Very thanks Zyxel for help, problem was with pfx certificate. (p12 could be imported correctly)
0 -
Hi @kyssling
Yes, the certificate requires using the extra private key and should be imported as a .p12 file. This allows us to use the extension tool to modify the certificate as needed.
I'm glad to hear that this is helpful!
Kay
See how you've made an impact in Zyxel Community this year!
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 146 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight