yes it is encrypted but i have created ssl using letsencrypt and it is passwordless i dont know which password i should insert when it ask to enter password for private key

do you know any other way by which i can use letsencrypt fullchain.pem chain.pem and privkey pem as ssl

On Thu, Sep 27, 2018, 10:40 PM Rob Crittenden <rcritten@redhat.com> wrote:

Anush Jayan wrote:
> |ipa-cacert-manage -n DSTRootCAX3 -t C,, install DTSRootCAX3.pem|
>
> |
>
> |ipa-cacert-manage -n LetsEncryptX3 -t C,, install ca.cer|
>
> |
>
> |ipa-certupdate |
>
> |
>
> |ipa-server-certinstall -w fullchain.pem privkey.pem|
>
> |then it askd me for directory manager password|
>
> |then it was asking for something private key unlock password |
>
> |here i got atuck i dont know which password to insert|

I can only assume that the private key is encrypted. You need to provide
the encryption key for it.

If you look at the contents of privkey.pem and it starts with:

-----BEGIN ENCRYPTED PRIVATE KEY-----

then it is encrypted.

rob

>
> |
>
> |
>
> |
>
>
> On Thu, Sep 27, 2018, 7:10 PM Rob Crittenden <rcritten@redhat.com
> <mailto:rcritten@redhat.com>> wrote:
>
> Anush Jayan via FreeIPA-users wrote:
> > im currently using freeipa 4.3.1 on ubuntu 16.04 im having trouble
> installing letsencrypt ssl key for https can anyone help me fix this
> >
>
> It would help if you said what you tried and what you are seeing.
>
> rob
>