/var/lib/ipa/private/httpd.key: unable to load private key

[dlab222]

Hi First of all thank you for the great work, it made things so easy. I am trying to set this up on a fresh box OS --> Centos 8 FreeIPA version 4.8.7

Followed your instructions on setting the hostname and email id in the scripts and executed. It ran for few minuites with no errors, in the end its says command was successful and prompt for httpd key pass phrase. I tried with good pass phrase but it keeps failing. Let me know what am I missing?

bash setup-le.sh

ipaplatform.redhat.tasks: INFO: Systemwide CA database updated. ipalib.backend: DEBUG: Destroyed connection context.rpcclient_140177581803112 ipapython.admintool: INFO: The ipa-certupdate command was successful Enter pass phrase for /var/lib/ipa/private/httpd.key: 140526484875072:error:28078065:UI routines:UI_set_result_ex:result too small:crypto/ui/ui_lib.c:905:You must type in 4 to 1023 characters Enter pass phrase for /var/lib/ipa/private/httpd.key: unable to load Private Key 140526484875072:error:2807106B:UI routines:UI_process:processing error:crypto/ui/ui_lib.c:545:while reading strings 140526484875072:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:crypto/evp/evp_enc.c:621: 140526484875072:error:23077074:PKCS12 routines:PKCS12_pbe_crypt:pkcs12 cipherfinal error:crypto/pkcs12/p12_decr.c:63: 140526484875072:error:2306A075:PKCS12 routines:PKCS12_item_decrypt_d2i:pkcs12 pbe crypt error:crypto/pkcs12/p12_decr.c:94: 140526484875072:error:0907B00D:PEM routines:PEM_read_bio_PrivateKey:ASN1 lib:crypto/pem/pem_pkey.c:88:

Thank you Harsha

[dlab222]

Reading through the past tickets. This helped resolved the issues. https://github.com/freeipa/freeipa-letsencrypt/issues/18#issuecomment-618139020

Thank you Harsha.