Skip to main content

From PFX to PEM

If you ever find yourself in the situation when you need to extract the certificate and the private key from the PFX file you might be somewhat disoriented at first, especially if your experience is limited to Windows systems. Do not despair, it is very easy to do.  

One possible scenario - you have requested and processed the original certificate using IIS, then exported certificate with the private key, either to be stored in the safe place as a backup or to be imported into other servers or devices (typical in case of say wildcard certificates). Then, when you try to import it into a Linux/Apache based appliance, you find out that it requires a slightly different format (a certificate file and a private key file):



First, you would need to get a hold of an OpenSSL toolkit, visit OpenSSL Project website or download Windows installer hereOnce you have installed OpenSSL and have your PFX file handy, you can run the following commands to extract the private key and the certificate into two separate files:

openssl.exe pkcs12 -in XYZ.pfx -nocerts -out XYZprivateKey.pem
openssl.exe pkcs12 -in XYZ.pfx -clcerts -nokeys -out XYZpublicCert.cer

That's it. You can now import them.
Labels:

Comments

  1. William JessieMarch 15, 2021 at 1:07 PM

    I just wanted to say this is an elegantly composed article as we have seen here.Professional swiss work Certificate Generation Tool I got some knowledge from your article and also it is a significant article for us. Thanks for sharing an article like this.

    ReplyDelete
  2. AnonymousNovember 30, 2022 at 3:09 AM

    Further consideration is required to make sure playing coverage, industry practices and public well being measures extra effectively cut back playing harm in up to date settings. In particular, the proliferation of inducements and the poor pricing of 점보카지노 complex bets corresponding to multi-bets, and their outsized attraction to players with issues, must be a key area of focus. These incentivised bets goal problem players with poor odds, whereas profitable gamblers are banned from play by online betting suppliers. This mixture is clearly in opposition to customers’ reasonable expectations for fair-play in betting.

    ReplyDelete

Post a Comment

Popular posts from this blog

Mail-enabled security groups in Office 365

Another update (11/19/2013):  further evolution of Office 365 services makes creation of distribution and security groups even easier, plus there's now an option of creating a dynamic distribution group (click here for more information):    Update (08/06/2012): a clear sign of Office 365 evolving along the same lines as other agile cloud services - small incremental features and minor new functionality are being delivered almost continuously and, unlike important major service updates,  without much fanfare. For example, there's no need to resort to using PowerShell to setup mail-enabled security groups anymore, it can now be done at creation using management portal:       Those managing Office 365 ( O365 ) tenant via the Microsoft Online Services Portal  ( MOS Portal ) interface would notice that there are two distinct group entities: Security Groups: can be created via MOS Portal (main portal page>Management>Security Groups) and used for assigning
3 comments
Read more

Drumbeat - Sales and Technical Resources for Office 365

​ Drumbeat - provides information as well as technical and sales resources for Office 365. From partnering with Microsoft, to building up your sales and technical readiness, to adopting proven methodologies for successful deployment - you will find lots of good information and many helpful links there. Here's a quick sample of topics covered: The Customer Decision Framework is Microsoft's selling methodology designed to help partners sell Office 365 to their customers. Office 365 FastTrack is Microsoft's new, 3-step pilot and deployment methodology designed so customers experience service value early in the sales cycle with a smooth path to advance from a pilot to deployment.
Post a Comment
Read more

Sample DS Command

PowerShell is all the hype these days, and rightfully so - you can do just about anything with it; but, call me old-fashioned I still like to use ds commands every now and then, it's quick and dirty. Here are a few samples that query AD and to get some basic counts and other information: # Get a count of enabled and disabled user accounts in the domain dsquery user -limit 0 domainroot | dsget user -dn -disabled | find /c /i " no" dsquery user -limit 0 domainroot | dsget user -dn -disabled | find /c /i " yes" # Get a count of enabled and disabled computer accounts in the domain dsquery computer -limit 0 domainroot | dsget computer -dn -disabled | find /c /i " no" dsquery computer -limit 0 domainroot | dsget computer -dn -disabled | find /c /i " yes" # Get a count of enabled, but inactive (at least 24 weeks) user and computer accounts in the domain dsquery user -inactive 24 -limit 0 domainroot | dsget user -dn -disabled | find /c /i
3 comments
Read more