Google App Engine SSL with Let's Encrypt "could not be inserted"

If you use certbot in Apache it defaults to 4096. So force key length to 2048.

certbot-auto --rsa-key-size 2048 From docs [https://certbot.eff.org/docs/using.html]

This creates PEM certificates in /etc/letsencrypt/live/example.net

Convert to RSA (change the url in cmd to your site).

sudo openssl rsa -inform pem -in /etc/letsencrypt/live/example.net/privkey.pem -outform pem > rsaprivatekey.pem

Above command is from this blog post http://blog.seafuj.com/lets-encrypt-on-google-app-engine. This also explains how to setup your webapp2 webserver.

Go to App Engine > Settings > SSL Certificates

Upload fullchain.pem Upload rsaprivatekey.pem

The file upload button works fine - no need to paste unless its more secure.

I ran into similar problems as well a few weeks ago when trying to upload my new certificate using the same recipe I successfully used before.

What worked for me in the end was:

• copy-pasting the entire content of the certificate file into the box marked Or paste the public key certificate in the box below:

and,

• copy-pasting just the full key at the end of my private key .pem file into the box marked Or paste the RSA private key in the box below: (though I don't exactly recall if I included the leading -----BEGIN RSA PRIVATE KEY----- and tailing -----END RSA PRIVATE KEY----- lines or not).

I (kinda blindly) made several attempts for each of the 2 copy-paste operations with whatever crossed my mind - the success/failure feedback is immediate.

Side note - you may want to also double-check your certificate, in my case the 1st certificate file I managed to upload successfully was an incomplete one (missing intermediate entities), which appeared to be working fine from my desktop, but was failing when browsing from Android, I had to re-generate another one. I used digicert to confirm the problem and verify the 2nd certificate (following suggestions from an SO answer, of course ;)