Forums RapID Secure Login for WordPress RapID Secure Login Knowledge base I cannot import my Server PFX file

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #519
    RapID SupportRapID Support
    Keymaster

    Version 1 of the RapID-SL plugin used a manual process to initialize the site. In some cases, the stage of importing the RapID service authentication certificate and key could fail due to misconfigured or unsupported platform features.

    An error when importing the PFX file can be caused by an incorrect PFX file password, but will also appear if your Internet host provider does not have OpenSSL support installed correctly. When this happens, the RapID Service Certificate will be shown as OK, but the service key will report as ‘Missing’.

    For the new ‘Version 2’ plugin, the PFX import is hidden from the site administrator – it is automatically installed during sign-up.
    If you have problems subsequently, you should be able to perform a ‘repair’ installation by scanning the QR code on the Settings->RapID screen and following the instructions on your phone to re-apply the same account information.

    #695
    Chris
    Moderator

    You can troubleshoot this sort of configuration problem by first enabling WordPress diagnostics.
    You will need file access to your site to do this (e.g. ftp).
    From the root folder of your site, edit the wp-config.php file to enable logging:

    define(‘WP_DEBUG’, true);
    define(‘WP_DEBUG_LOG’, true);
    define(‘WP_DEBUG_DISPLAY’, false);

    Then run through the pfx import process again.
    You should now have a debug.log file in your site’s wp-content folder.

    Checking in here, if you see errors such as:
    RapID: OpenSSL Err: error:02001002:system library:fopen:No such file or directory
    then this indicates that your OpenSSL installation is not configured correctly.
    This is a common problem with Azure Web-App deployments, where the openssl.cnf configuration file is located in an inaccessible folder.

    To work round it, you can copy your actual openssl.cnf file into the ‘certs’ folder within the RapID-SL plugin folder.

    In Azure, the openssl.cnf file is likely to be here:
    c:/usr/local/ssl/openssl.cnf

    Copy it into the certs folder and try importing the pfx file again.

    If you cannot locate your actual openssl.cnf file, there is a sample provided in the certs folder, called sample-openssl.cnf.
    Just rename this to openssl.cnf and try again.

Viewing 2 posts - 1 through 2 (of 2 total)
  • The forum ‘RapID Secure Login Knowledge base’ is closed to new topics and replies.