Problem

The "Install application remotely" task wizard presents an option to specify an SSH certificate as account credentials, if Linux package is selected for installation. 

The wizard does not accept certain certificates and fails to provide informative error messages why this happens.

Examples:

Failed to upload the certificate.

Failed to import the private key of the certificate.

Root cause

KSC 13.2 only accepts PEM certificates, they start with header line of the following format:

-----BEGIN RSA PRIVATE KEY-----

However, most modern Linux systems use openssh, which offers an ssh-keygen tool to generate certificates. Starting from ~2018 it generates certificates in its own openssh structure if used with default settings. The header looks as follows:

-----BEGIN OPENSSH PRIVATE KEY-----

Solution

As a workaround, generate a cetificate in the PEM/RSA format.

• Using ssh-keygen (newer versions): use -m flag to switch to the old PEM format.

# ssh-keygen -t rsa -m PEM

• Using PuTTYgen:

Generate the SSH-2 certificate, then navigate to Conversions → Export OpenSSH key (do not choose "force new file format").