Solved

How to make sure that a certificate and a private key match together?

Posted on 2009-07-02
6
308 Views
Last Modified: 2012-05-07
Hello,

I have a signed certificate and a private key, how to check if they match with openssl in Wndows enviroinment?

TIA!
0
Comment
Question by:U4enik
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 5

Expert Comment

by:JohnmenZ
ID: 24761110
This link gives you commands to do what you want: http://kb.wisc.edu/middleware/page.php?id=4064

Those commands should work in a Windows installation of OpenSSL.
0
 

Author Comment

by:U4enik
ID: 24761337
autocompare doesn't work in Windows, and I don't really understand what numbers to compare
0
 
LVL 5

Accepted Solution

by:
JohnmenZ earned 500 total points
ID: 24761573
Can you get outputs from these two commands:

$ openssl x509 -noout -text -in server.crt
$ openssl rsa -noout -text -in server.key

If so, look into the "modulus" part of the outputs, they are match each other, otherwise the key is not for the certificate.
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 

Author Comment

by:U4enik
ID: 24761626
00:b6:9e:3b:75:4d:f2:12:4b:43:a1:aa:64:79:41:
                    f3:dd:bd:b6:bf:14:bb:05:3f:72:ed:12:c6:d2:5e:
                    9c:72:2c:52:35:93:30:a5:5c:0f:e8:1c:ce:32:ea:
                    7a:61:f8:85:dc:82:50:ef:7e:f2:ab:b1:7a:31:05:
                    76:73:cb:20:8b:af:dc:d0:5b:dd:1a:26:ab:46:e3:
                    3e:0e:e1:a3:01:41:bc:d5:2f:60:08:d5:2f:12:3b:
                    7c:20:5b:3a:2e:66:cd:42:40:72:52:53:52:93:e3:
                    b2:2f:bd:74:08:fd:57:ca:58:34:b4:96:b0:ed:26:
                    ed:a4:f7:63:d1:2b:02:83:11

And

00:dc:15:6c:81:e7:e1:c6:ad:ef:42:e9:47:f1:20:
    83:cf:85:a4:df:8c:26:b1:00:37:54:e5:b4:e0:bb:
    8d:a8:d1:9f:1f:a4:29:7c:08:4f:c5:38:97:b0:bf:
    ea:80:81:91:90:d3:00:8f:e6:c2:29:e1:66:6a:ed:
    08:e1:90:10:4d:77:37:7d:01:8a:cc:e3:46:16:ab:
    3b:4f:99:c8:61:85:59:87:1f:7a:47:4e:bb:e1:47:
    6c:30:c8:e0:d1:fc:01:ed:8e:e4:e2:fe:a4:a1:48:
    73:18:e7:d8:76:36:d6:e7:7c:6a:1c:e8:5d:25:11:
    04:69:5e:94:ec:f3:51:28:b5

So, this is a wrong key, right?
0
 
LVL 5

Expert Comment

by:JohnmenZ
ID: 24761636
From what I can see, yes.  But just be sure, you can try the commands on a known matched certificate and key to confirm you are not looking into the wrong place.
0
 

Author Comment

by:U4enik
ID: 24761650
Superb!
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
In 2017, ransomware will become so virulent and widespread that if you aren’t a victim yourself, you will know someone who is.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question