[WINDOWS] mongocxx Client cannot parse private key for a TLS connection to mongodb server

Nate_Rearick · 2024-06-11T17:53:38.715Z

Hi, I’m trying to setup a mongocxx connection to a mongodb server with a TLS connection. I’ve gotten mongo-express setup with TLS connections, so I know that the server is configured to allow TLS connections. The driver works as expected if I’m not using TLS, however when I try to enable tls and provide a .pem file, I get this error

 Failed to parse private key. ASN1 bad tag value met.
 (0x8009310B)

Keep in mind I’ve used the same method of generating the .pem file for mongo-express, so I’m surprised the same way doesn’t work for the driver. Any ideas on how to fix this problem?

Kevin_Albertson · 2024-06-11T18:49:46.082Z

Hi @Nate_Rearick, this may be related to a known issue loading PKCS#8 private keys on Windows if attempting to use client certs. CDRIVER-4269 tracks this issue and notes a possible workaround by converting the key to PKCS#1:

As a workaround, users can convert PKCS#8 to PKCS#1 for an RSA key:
openssl rsa -in private_key_pkcs8.pem -out private_key_pkcs1.pem

Topic	Replies	Views	Activity
Using IMongoQueryable on unit tests for Async methods Drivers dot-net c-driver	1	1.1k	Jun 2024
Optimize JSON Output in MongoDB ToJson Drivers dot-net	4	490	May 2024
Transfer information to logger Drivers golang	1	395	Jul 2024
Serialization Issue in MongoDB.Driver 3.0.0 for C# Drivers dot-net	1	1.4k	Nov 2024
Handling renewed certificates Drivers dot-net	0	27	Dec 2024

[WINDOWS] mongocxx Client cannot parse private key for a TLS connection to mongodb server

New & Unread Topics

Want to read more? Browse other topics in Drivers or view latest topics.