KB Article #62916

PKIU26E PKICER _ Error ( Private and Public key incompatible {15034/0} )

Problem

This error happens when import the certificat by PKIUTIL. The same operation has been succededly done in other machine.



PKIU20I
PKIU20I PKI
PKIU20I Version 2.5.1 20090703
PKIU20I (C) Copyright AXWAY 1989-2007
PKIU20I ====> Starting Session on 02/02/2010 Time is 15:11:49
PKIU20I
PKIU26E PKICER   _ Error ( Private and Public key incompatible {15034/0} )
PKIU20I Number of Command(s) 1
PKIU20I Number of error(s)   1
PKIU20I Ending   Session on 02/02/2010 Time is 15:11:49
PKIU20I Session active for  0:00:00


Resolution

The issue might be linked to random initialisation, necessary for crypting operation of OpenSSL.
This  issue could be resolved by a UCONF parameter starting from V2.6.3



"CFTUTIL uconfset id=cft.seed.enable_internal, value=Yes"
This means that CFT will use internal random seed.



If the import works using internal random seed, and if the customer prefers to use system random service (more secure than product''s internal one), he should check that the "/dev/urandom" is well installed and he has rights to access it .

Still need help?

If this information wasn't helpful to you, just drop us a line. We'll get back to you as soon as possible.