Cant sign CSR - "Please select a valid Digest Algorithm."
-
I'm using a pfSense VM as a small CA for a lab environment. It has worked fine for a year but now I've run intro trouble. The CA certificate is created on the same pfsense machine and kept there. I've used it to sign various stuff in my lab environment, server certificates mostly. I've created a CSR on a esxi host machine, but when signing it it says:
The following input errors were detected:
- Please select a valid Digest Algorithm.
The default selection is SHA256, and it does not matter what I choose in the list, I still get that same error. If I try to click "Save" again it just gives up and send me back to the list of certificates already created.
I'm not sure what log file to look in for this... I've looked around in various files in /var/log to get a clue, but so far I've got nothing. I've found a few bug reports similar to this when googling, but not exactly like my case.
Ideas? :)
pfSense is 2.4.4-RELEASE-p1 (amd64)
-
I do recall a bug, thought it was corrected.. I would upgrade to p2..
Found it.
https://redmine.pfsense.org/issues/9180 -
@johnpoz said in Cant sign CSR - "Please select a valid Digest Algorithm.":
https://redmine.pfsense.org/issues/9180
I found that one to, but to me it happens no matter what algoritm I choose, not just SHA512. But I didn't see the target version 2.4.4_2 there.... I'll upgrade and test again.
-
Yeah its listed as fixed in the release notes for p2 as well
https://docs.netgate.com/pfsense/en/latest/releases/2-4-4-p2-new-features-and-changes.html
Fixed input validation that rejected certain valid hash algorithms when signing a CSR #9180If still have issues - come on back and try and I'll try and duplicate, and can reopen that or create a new redmine.
-
Upgrade fixed it! Thanks.
Impressive response time. 3 minutes. :)
