This error occurs when a password is entered to encrypt the private key file (<filename>.key). Apache on Windows doesn't support private keys that are encrypted. This password may have been set while creating the CSR.
- First, make a copy and backup your private key file. This file should have an extension of ".key".
- Start OpenSSL and use the following command to remove the passphrase from the private key. Change <filename1> to the name of your current private key. Choose a new name for <filename2>.
openssl rsa -in <filename1>.key -out <filename2>.key
Note: <filename2> will be your new private key file that does not contain a passphrase.
- Move the new private key (<filename2>) to the same path as to where the original private key was located.
- Open your httpd.conf file and verify that the directive called "SSLCertificateKeyFile" points to the newly uploaded private key (<filename2>).
- Locate the directive "SSLPassPhraseDialog" and put a '#' in front of it to comment out that line.
If this doesn't appear to work for you, then you may need to create a new certificate. This will require another CSR. To ensure that no passphrase is entered in during the CSR generation phase, please use our OpenSSL Command Tool on our PKI Widgets website.