• Please be aware: Kaspersky Anti-Virus has been deprecated
    With the upgrade to Plesk Obsidian 18.0.64, "Kaspersky Anti-Virus for Servers" will be automatically removed from the servers it is installed on. We recommend that you migrate to Sophos Anti-Virus for Servers.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Unable to set the private key: Probably, the private key format is invalid.

N

netpresent

Guest
Bought a key from Godaddy (Standard SSL Renewal). My domain is on its own IP address. I just cant manage to install the new certificate.

If I go to my domain's main page, click Certificates, click Choose file, choose my gd_bundle.crt, and then click Send Sile, I get:

Error: Unable to find the appropriate private key for the certificate.

Or if I clicks 'Add SSL Certificate', and try to upload the bundle from there, I get:

Error: Unable to set the private key: Probably, the private key format is invalid.
Error: Some fields are empty or contain an improper value.

I have no idea what I should put in which field. I have 4 files now: mydomain.key, playak.csr, gd_bundle.crt, and mydomain.crt . The form is asking for 3 files, and I must admit I have no idea what the difference is between 'Certificate' and 'Certificate CA'. Also, it seems strange that my private key file starts with something like:

-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,BB7.....

tOSjCFDF+5dddyLX37jc4UxClGinzHh2I1WVm79....

I generated the private key in the linux shell.

I'm very confused. Have used SSL before on the same server, but have never seen this problem.

Any help would be highly appreciated.

Cheers,
Jeroen
 
I have exactly the same problem

Somebody please respond?

Thanks...

Bump!
 
I had the same problem until I realized that the key file I generated needed to be decrypted before Plesk would accept it.

If you generated an RSA-encrypted key file using openssl on Linux, use `openssl rsa -in key.key -out newkey.key` to create a decrypted copy. You'll be prompted to enter the passphrase in order to decrypt. Don't forget to make a backup copy of your original key file!

You'll notice that the "header" of the decrypted key file doesn't have the two text lines + new line following "-----BEGIN RSA PRIVATE KEY-----"

If you received the key as-is from GoDaddy, either you provided them with a passphrase or they provided one to you -- so with this piece of data you'll be able to decrypt.

Hope this helps.
 
Thanks!

That worked! :) I might suggest that Plesk should respond with a more helpful error message, like:

"Your private key is encrypted - decrypt it first using [shell command here] then retry."

Thanks again
 
You must log in or register to reply here.

Similar threads

G
Issue read out private key
Replies
1
Views
618
Peter Debik
P
Lenny
Resolved Seeking Assistance with API Communication Issues via SSL on Plesk
Replies
4
Views
2K
Lenny
Lenny
M
Issue Unable to set the private key: Probably, the private key format is invalid.
Replies
2
Views
2K
mukeshwar
M
P
Issue Error: "Unable to find row with id 0 in certificates table." when adding new self-signed certificate
Replies
0
Views
2K
pleshk
P
DigitalSplendid
Issue Unable to access FTP files for WordPress instance for AWS Lightsail Plesk hosting
Replies
5
Views
4K
ady1301
A
Back
Top