The reason for this is simple: OpenSSL expects the CSR to be wrapped after 64 characters but the SG300 generates them in a single line. Manually rewrapping the CSR allowed me to process the CSR in OpenSSL – but that's a fact that took about 8h to figure out...
Also: I was not able to import a public/private key combination that was generated through OpenSSL. One of the reasons is that the SG300 expects the banner for the public key to be BEGIN RSA PUBLIC KEY whereas OpenSSL seems to use BEGIN PUBLIC KEY. Even after fixing the header, all I managed to get was Failed to load public key. Finally, I gave up trying and used the CSR way to install the certificate. It would be great if the SSL handling were a little smoother. Thanks!
Your best bet for something like this would be to give us a call and ask to open a support case. Give the technician a link to this post and ask for an escalation for a feature request/bug. I can't guarantee what will be done about it, it may be working as intended, but I can get it to the right people.
it will generate a banner using BEGIN RSA PUBLIC KEY
2) from Hex Editor, using RSA Public Key PEM file : remove all 0a character BUT ○ The one just after -----BEGIN RSA PUBLIC KEY----- ○ The one just before -----END RSA PUBLIC KEY----- (remove last 0a character too)
3) extract PlainText RSA Private Key from PEM file using the following command :
openssl rsa -in cert.pem -out rsakey.pem
it will generate a banner using BEGIN RSA PRIVATE KEY
4) from Hex Editor, using RSA Plain Text Private Key PEM file : remove all 0a character BUT ○ The one just after -----BEGIN RSA PRIVATE KEY----- ○ The one just before -----END RSA PRIVATE KEY----- (remove last 0a character too)
5) Just copy/paste updated content files to the cisco web interface
for certificate itself, from Hex Editor, using PEM file : - Remove all before -----BEGIN CERTIFICATE----- - Remove all after -----END CERTIFICATE----- (remove last 0a character too, but keep all 0a character between the 2 previous tag. There are 1 every 64 characters)
After all this stuff, it should work ! (it worked for me)
Sx550X, Sx350X, Sx250: PSE will Supply Power to Catalyst PSE Ports
May 31, 2016
June 5, 2017
Configure Remote Network Monitoring (RMON) Events Control Settings on a Switch through the Command Line Interface (CLI)
Remote Network Monitoring (RMON) was developed by the Internet Engineering Task Force (IETF) to support...