Create a pkcs12 (.pfx or .p12) from OpenSSL files
To create a PKCS12 file using OpenSSL, you need to perform the following steps. PKCS12 files, also known as PFX files,
can store private keys, public certificates, and even intermediate certificates in a single encrypted file format.
To create a P12 file, you typically need the following components:
1. Private Key: The private key is a critical part of asymmetric encryption and authentication.
It should always be kept confidential and secure.
2. Public Key Certificate: This is a digital certificate containing a public key and additional information about the owner of the certificate,
such as their identity and the entity that issued the certificate.
3. Intermediate Certificates (optional): If your certificate requires a chain of trust, intermediate certificates may be included in the P12 file.
Create the pkcs12 file that will contain your private key and the certification chain:
openssl pkcs12 -export -inkey your_private_key.key -in pem-file.pem -name my_name -out final_result.pfx
openssl pkcs12 -export -out certificate.p12 -inkey privatekey.key -in certificate.crt
Alternatively,
openssl pkcs12 -export -out My_name.p12 -inkey your_private_key.key -in signed-cert.crt -name my_name -certfile ProdRoot_Cert.crt -certfile ProdIntermediate_Cert.crt.
0 Comments