-
Notifications
You must be signed in to change notification settings - Fork 88
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
This should help customers who want to use the PFX/PKCS12 format
- Loading branch information
Showing
2 changed files
with
62 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,61 @@ | ||
| # How to Generate a PFX File | ||
|
|
||
| ```eval_rst | ||
| .. title:: SSL | Generating a PFX file | ||
| .. meta:: | ||
| :title: SSL | Generating a PFX file | ANS Documentation | ||
| :description: Generating a PFX file | ||
| ``` | ||
| This guide will help you generate a PFX (also known as PKCS#12) file on different operating systems. | ||
|
|
||
| ## Generate a PFX file on Linux | ||
|
|
||
| First, check if OpenSSL is installed: | ||
|
|
||
| ```shell | ||
| openssl version | ||
| ``` | ||
|
|
||
| If OpenSSL is not installed, you will see an error message. In that case, install OpenSSL: | ||
|
|
||
| #### Ubuntu | ||
|
|
||
| ```shell | ||
| sudo apt install openssl | ||
| ``` | ||
|
|
||
| #### RHEL/AlmaLinux | ||
|
|
||
| ```shell | ||
| sudo yum install openssl | ||
| ``` | ||
|
|
||
| Now you can generate the PFX file. | ||
|
|
||
| Suppose you have a private key file (`privateKey.key`), a certificate file (`certificate.crt`), an intermediate certificate file (`intermediate.crt`) and a root certificate file (`root.crt`). | ||
| Open a terminal and run the following command: | ||
|
|
||
| ```shell | ||
| openssl pkcs12 -export -out certificate.pfx -inkey privateKey.key -in certificate.crt -certfile intermediate.crt -certfile root.crt | ||
| ``` | ||
|
|
||
| You’ll be prompted to set an export password to protect the PFX file. Remember this password; you’ll need it later. | ||
|
|
||
| ## Generate a CSR on Windows | ||
|
|
||
| Check if OpenSSL is Installed by opening a Windows Command Prompt and entering: | ||
|
|
||
| ```powershell | ||
| openssl version | ||
| ``` | ||
|
|
||
| If OpenSSL is not installed, you will see an error message. In that case, install OpenSSL following the official instructions located at <a href="https://github.com/openssl/openssl/blob/master/README.md" target="_blank">https://github.com/openssl/openssl/blob/master/README.md</a>. | ||
|
|
||
| Suppose you have a private key file (`privateKey.key`), a certificate file (`certificate.crt`), an intermediate certificate file (`intermediate.crt`) and a root certificate file (`root.crt`). | ||
| Open a terminal and run the following command: | ||
|
|
||
| ```powershell | ||
| openssl pkcs12 -export -out certificate.pfx -inkey privateKey.key -in certificate.crt -certfile intermediate.crt -certfile root.crt | ||
| ``` | ||
|
|
||
| You’ll be prompted to set an export password. Remember this password for future use. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters