Our Gateway's default SSL certificate is getting expired within few days. We have uploaded new certificate and private key through Policy Manger. However, in private key properties, only root certificate being shown. When trying to replace the certificate chain in private key property, getting following error:
Error assigning new Cert. make sure the cert you choose is related to the public key it is being assigned for
Please note that in OpenSSL, we are able to see server certificate, intermediate certificate and root certificate against the key. However, only root certificate is being shown in private key property in Policy manager.
From the error message it would appear that the certificate chain has not been constructed correctly as the file needs to contain the certificate that has been signed, followed by the intermediary signing CA certificate, and then the CA that signed the intermediary CA. The attached document should provide some guidance on this.
Director, CA Support
Knowledge Base Articles helped me to resolve the issue.