Solved

Creating a CRT SSL Certificate

Posted on 2008-10-15
5
2,858 Views
Last Modified: 2013-11-29
I paid for a SSL cert from Verisign for our FTP server and according to the software vendor of the FTP software we purchased I need the key file and the CRT file to install the cert. I have the cer, key and csr files, but no CRT file. How do I convert the CSR or get this CRT for the server?

Thanks, Scott...

0
Comment
Question by:smuth
  • 3
  • 2
5 Comments
 

Author Comment

by:smuth
ID: 22721434
I do have a txt file with the actual cert in it as well
0
 
LVL 31

Accepted Solution

by:
Paranormastic earned 500 total points
ID: 22722226
Depending on the app, sometimes you can get away with doing:
copy YourCert.cer YourCert.crt

If not, then you need an SSL tool - the standard is OpenSSL which is opensource (free):
http://www.slproweb.com/products/Win32OpenSSL.html
(search page for "Win32 OpenSSL v0.9.8i Light")

openssl.exe x509 -in YourCert.cer -out YourCert.crt

(note the .exe is usually in the "c:\openssl\bin" folder)
0
 

Author Comment

by:smuth
ID: 22723532
I was able to create the crt file with openssl, but it is still not working. I am using gene6 ftp server and they told me to put the key and crt files in the certs directory and then change the setup.ini and add the following two lines

SSLCertKeyPath=ftp.domain.com
SSLPassPhrase=<PEM passphrase entered at csr generation>

I did this and it still does not work. I am not sure if it is their software or the cert. Any ideas?
0
 
LVL 31

Expert Comment

by:Paranormastic
ID: 22735059
Have you installed the cert to your local computer cert store?  When installing can try auto, or you can manually install it - check the box for show physical stores and point to Personal and there should be a local computer subfolder.
Another thought is if you have the root cert chain installed - if this is your own CA then you will need to do this (http://caname/certsrv and take the 3rd option and get the root cert chain), if not you may still need to do that - some roots like godaddy are newer than SP2 so you could go to SP3 or get the current root cert list here:
http://www.microsoft.com/downloads/details.aspx?FamilyId=F814EC0E-EE7E-435E-99F8-20B44D4531B0&displaylang=en
0
 

Author Closing Comment

by:smuth
ID: 31506312
This worked for the most part. I guess their software is a little tricky and I had to install the cert a little different after I created the crt file. Thanks for your help
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Suggested Solutions

We recently endured a series of broadcast storms that caused our ISP to shut us down for brief periods of time. After going through a multitude of tests, we determined that the issue was related to Intel NIC drivers on some new HP desktop computers …
As a financial services provider, your business is impacted by two of the strictest federal regulations on record: the Sarbanes-Oxley Act and the Gramm-Leach-Bliley Act. Correctly implementing faxing into your organization to provide secure, real-ti…
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now