NAM Access Manager Console returns "PKI_E_PARSE_CERTIFICATE error -1240" while trying to import a certificate

  • 7018791
  • 11-Apr-2017
  • 01-Jun-2017


NetIQ Access Manager 4.x


When trying to import a certificate in Base64 format, it fails, throwing the error: "Error importing signed certificate: Error: PKI_E_PARSE_CERTIFICATE, Error: -1240".


Remove all information outside the following delimiters: "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----"


While it is allowed to have additional human-readable information included in a certificate file like attributes, subject and issuer, the certificate file when importing should not contain any information outside the "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----" delimiter.

This additional information can be added by the openSSL process to generate a certificate out of a public/private keypair (PKCS#12 format).