3573217 - How to specify the key size of CSR: BTP CF Custom Domain

Symptom

You are creating a new server certificate and a certificate signing request (CSR) to obtain a certificate for your custom domains from a trusted certificate authority. The key size is set as 3072 bit and the Certificate Authority (CA) doesn't support this key size.
The below error is generated when the certificate is requested:
*********************************

Certificate request is INVALID! The following errors must be addressed before submitting:
Invalid public key size. For RSA keys, only 2048 bit keys are allowed

*********************************

Environment

SAP Business Technology Platform (BTP)
Cloud Foundry (CF)
Custom Domain

Product

SAP BTP, Cloud Foundry runtime and environment all versions ; SAP Business Technology Platform all versions ; SAP Integration Suite all versions

Keywords

CSR, Certificate Signing Request, key length, 3072 bits, 2078 bits, SAP Business Technology Platform, Custom Domain Certificates, cf custom-domain-create-key, Certificate Authority, rejection. , KBA , BC-CP-CF-SEC-DOM , Custom Domain Certificates , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.