Log in to ask questions, share your expertise, or stay connected to content you value. Don’t have a login? Learn how to become a member.
I want to add our own Certificate to secure HTTPS with more bit than ScreenOS gives me.
I uploaded the CA-Cert to "Objects > Certificates > CA"
Now I set a new cert from "Local" with ECDSA and Key Lenght 2048.
When I insert the CSR to sign with the imported CA (StartSSL) it tolds me the Key Lenght is only 768 ? So i cant do the next step...it requires min. 2048.
Is it possible to import a CRT/KEY which is generatet from StartSSL?
I want to use an own certificate for administration and webauth.
When you're generating the new cert request in firewall just choose to use 2048bit key. See the attachment.
If that doesnt work, use RSA instead of ECDSA. It will work for sure.
If you are satisfied with the answer, please click "Accepted as Solution". Kudos also welcome!
that's what I've done. RSA worked for me, thanks.
But why generate ECDSA no 2048 Key?