Closed jon-larsen closed 1 year ago
I ran into the same issue using acme_certificate, it'll upload manually via GUI but attempting to import it - even from an Azure Keyvault - fails.
I thought it had something to do with being byte64 encoded though
Did anyone find any workaround to this issue? It fails with Letsencrypt certs too.
My workaround is to manually update the certificate.
Same issue here. GUI works, TF fails and throws Failed to extract certificate
Got this fixed for PEM keys in our lab, there was a typo in the pango/dev/certificate/pano.go file that referenced the public certificate instead of the private key (fw.go was correct, hence why it worked on firewalls). I have a static version published on registry.terraform.io for DEV purposes (unmaintained) until a new version includes the fix.
Fixed by 1.11.1
Describe the bug
I'm using "panos_certificate_import" on several firewalls, but when I use it on a panorama device I get an error.
Expected behavior
Same behavior on Panorama and Palo Alto devices.
Current behavior
Error message when Terraform try to import the certificate:
Error: Import of panorama.domain.com failed. Failed to extract certificate
The certificate is uploaded, but there is no key on the uploaded certificate.
I get no error when I upload the same certificate and key file manually through the panorama web interface.
Possible solution
Maybe panorama needs some extra parameters I am missing in my TF file...?
Steps to reproduce
Context
I want to upload certificate to the panorama device to use on a ssl profile for the management interface.
Your Environment