Follow the procedure below to extract separate certificate and private key files from the .pfx file.
- Take the file you exported (e.g. wildcard.pfx) and copy it to IMSVA, or a system where you have OpenSSL installed.
The *.pfx file must be in PKCS#12 format and should include both the certificate and the private key. Refer to this article on Exporting Certificates from the Windows Certificate Store for the procedure on exporting a *.pfx file including both the certificate and the private key.
- Run the following command to export the private key:
[root@rgn-imsva~]# openssl pkcs12 -in wildcard.pfx -nocerts -out key.pem –nodes
Nocerts means no certificates.
Nodes means no password for the private_key.
- Run the following command to export the certificate:
[root@rgn-imsva~]# openssl pkcs12 -in wildcard.pfx -nokeys -out server_certificate.pem
- Run the following command to remove the passphrase from the private key:
[root@rgn-imsva~]# openssl rsa -in key.pem -out server.key
After following these steps, you should now be able to import the certificate to IMSVA.