New Question
 
 
PRTG Network Monitor

Intuitive to Use.
Easy to manage.

200.000 administrators have chosen PRTG to monitor their network. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free PRTG
Download >>

 

What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general. You are invited to get involved by asking and answering questions!

Learn more

 

Top Tags


View all Tags


Replace certificate: unvalid chain

Votes:

0

Your Vote:

Up

Down

Hello,

I want to replace the self signed certificate with a official signed certificated. I use the prtgcertimporter and this tutorial: https://www.paessler.com/manuals/prtg/using_your_own_ssl_certificate

Unfortunately the importer always says: no valid chain found.

I have one file prtg.key, with windows line breaks (pem). The key is not encrypted.

-----BEGIN PRIVATE KEY-----

....

-----END PRIVATE KEY-----



I have one file prtg.crt, with windows line breaks (pem).

-----BEGIN CERTIFICATE-----

....

-----END CERTIFICATE-----

I have one file root.pem, with windows line breaks (pem).

-----BEGIN CERTIFICATE-----

.... (SubCA)

-----END CERTIFICATE-----


-----BEGIN CERTIFICATE-----

.... (PolicyCA)

-----END CERTIFICATE-----


-----BEGIN CERTIFICATE-----

.... (RootCA)

-----END CERTIFICATE-----

I starting the certimporter and choose the directory with the three files.

Reason(s):--> Certificate for SUBCA signed by <Issuer> is not for server authentication --> Certificate for prtg.mydomain.de signed by <Issuer> - usable for server authentication the certificate chain is invalid the directory contains no valid certificates.

Whats wrong?

certificate certificate-importer prtg

Created on Feb 28, 2019 8:21:45 AM by  christian_molecki (10) 1

Last change on Feb 28, 2019 8:25:41 AM by  Sven Roggenhofer [Paessler Technical Support]



6 Replies

Votes:

0

Your Vote:

Up

Down

Hi Christian,

For further assistance, please send us an email to [email protected] with screenshots from the certificate's "Details" and "Certificate Chain" tabs when double clicking on it.

Thank you & kind regards,

Erhard

Created on Feb 28, 2019 1:00:28 PM by  Erhard Mikulik [Paessler Support]



Votes:

0

Your Vote:

Up

Down

Hello Erhard,

I sent the information to the support on 01.03.2019. Did you received them?

Created on Mar 11, 2019 3:22:50 PM by  christian_molecki (10) 1



Votes:

0

Your Vote:

Up

Down

Hello Christian,

Not that I recall, I've looked now for emails from the address you have used to register in the knowledgebase, but there were no recent emails from your email address. Please send again and mention this thread in particular in the subject or body of the email.

Thank you,

Erhard

Created on Mar 11, 2019 3:48:50 PM by  Erhard Mikulik [Paessler Support]



Votes:

0

Your Vote:

Up

Down

Hello Erhard,

I sent it again.

Created on Mar 11, 2019 3:52:11 PM by  christian_molecki (10) 1



Votes:

0

Your Vote:

Up

Down

Got it now, thanks.

Created on Mar 11, 2019 4:10:27 PM by  Erhard Mikulik [Paessler Support]



Votes:

1

Your Vote:

Up

Down

Solution: You need to import the root certificate in the windows certificate store (trusted root certification authorities), if the root ca is a member of a private pki.

Created on Mar 12, 2019 1:31:27 PM by  christian_molecki (10) 1



Please log in or register to enter your reply.


Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.