Solved

Generate PKCS12 file from .cer and .pvk

Posted on 2014-01-20
6
2,159 Views
Last Modified: 2014-01-20
Hi Experts,

How can I generate a pfx file from a .cer and .pvk file?

Thanks,
Mike
0
Comment
Question by:thready
  • 3
  • 2
6 Comments
 
LVL 8

Expert Comment

by:amatson78
ID: 39794406
You can use openssl:

# openssl pkcs12 -export -out certificate.pfx -inkey certificate.key -in certificate.crt

If you need to include the certificate chain you can add "-certfile CACert.crt"

# openssl pkcs12 -export -out certificate.pfx -inkey certificate.key -in certificate.crt -certfile CACert.crt

You will be prompted to create a password twice and then cert should be created. You can check the cert with:

#openssl pkcs12 -info -in certificate.pfx
0
 
LVL 1

Author Comment

by:thready
ID: 39794442
My key is in the Microsoft proprietary blob format (.PVK) - not any of the formats required by OpenSSL...
0
 
LVL 8

Accepted Solution

by:
amatson78 earned 400 total points
ID: 39794522
My apoligies I missed that part. I should have read better. Since you have the .pvk already that part should be good. First convert the .cer to a .spc with Cert2spc.exe (http://msdn.microsoft.com/en-us/library/f657tk8f(v=vs.110).aspx):

cert2Spc.exe certificate.cer certificate.spc

Open in new window


Then once that is done use pvk2pfx (http://msdn.microsoft.com/en-us/library/windows/hardware/ff550672(v=vs.85).aspx) to merge the .spc and the .pvk to a .pfx file:

pvk2pfx.exe -pvk yourkey.pvk -pi <password> -spc certificate.spc -pfx certificate.pfx -po <password>

Open in new window


See if that works for you.

Cheers, Alan
0
Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

 
LVL 33

Assisted Solution

by:Dave Howe
Dave Howe earned 100 total points
ID: 39794527
you can download a conversion tool to standard PEM format here:

http://www.drh-consultancy.demon.co.uk/pvk.html

once it is in PEM format, you can use openssl or any other suitable tool (I prefer XCA) to convert that and the CER into the #12 format.
0
 
LVL 1

Author Closing Comment

by:thready
ID: 39794578
Thank you!
0
 
LVL 8

Expert Comment

by:amatson78
ID: 39795678
Glad that it helped and thank you for the Awesome rating :)

Cheers, Alan
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
TLS/SSL Diable 3DES ciper suites 4 55
Decrypt string by php 7 47
Securely save Hyper-v backups on local NAS 5 22
Need extreme network security for home 16 85
Knowing where your website is hosted is as important as the features you receive, the monthly fee, and the support you receive. Due diligence should be done when choosing your next hosting provider.
OnPage: Incident management and secure messaging on your smartphone
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question