Is it possible to convert an SSL certificate from a .key file to a .pfx?

by

To check if your .key file has everything you need:

#check if file contains a valid certificate:
openssl x509 -text -in file.key

It should print out certificate details. If it prints an error including the text “unable to load certificate”, then your file is not sufficient.

#check if file contains a valid key:
openssl rsa -text -in file.key
openssl dsa -text -in file.key

One of the above commands should print out valid key details. The other will give an error with the text “expecting an rsa key” or “expecting a dsa key”.

If the error text says “bad decrypt”, you have provided an invalid passphrase, or the file is damaged.

If the error text says “Expecting: ANY PRIVATE KEY”, then your file is not sufficient.

If you got a key, and one certificate which matches the key (and optionally some other certificates), then you have enough to convert the file to a pfx. Then, as ISW said, it’s just a matter of 

#convert file containing key and certificate(s) to PKCS#12 pfx file.
openssl pkcs12 -export -out file.pfx -in file.key

and you’re done.

More Related Contents:

  1. Wildcard SSL on sub-subdomain [closed]
  2. How to generate a self-signed SSL certificate using OpenSSL?
  3. Not able to install Python packages [SSL: TLSV1_ALERT_PROTOCOL_VERSION]
  4. Java: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  5. Trust Anchor not found for Android SSL Connection
  6. Is it possible to have SSL certificate for IP address, not domain name? [closed]
  7. This certificate has an invalid issuer Apple Push Services
  8. Installation SSL in wamp server: Error in httpd-ssl.conf
  9. How to fix the “java.security.cert.CertificateException: No subject alternative names present” error?
  10. How can I generate a self-signed certificate with SubjectAltName using OpenSSL? [closed]
  11. What do I need to do to get Internet Explorer 8 to accept a self signed certificate?
  12. Converting pfx to pem using openssl
  13. How to tell Maven to disregard SSL errors (and trusting all certs)?
  14. Converting a Java Keystore into PEM Format
  15. Unable to resolve “unable to get local issuer certificate” using git on Windows with self-signed certificate
  16. Docker container SSL certificates
  17. Tomcat Server/Client Self-Signed SSL Certificate
  18. NSURLConnection/CFURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9813) iOS
  19. how to fix stream_socket_enable_crypto(): SSL operation failed with code 1
  20. cURL requires CURLOPT_SSL_VERIFYPEER=FALSE
  21. How to save public key from a certificate in .pem format
  22. javax.net.ssl.SSLPeerUnverifiedException: Host name does not match the certificate subject provided by the peer
  23. Why does Python requests ignore the verify parameter?
  24. How to download the SSL certificate from a website using PowerShell?
  25. Java7 Refusing to trust certificate in trust store
  26. Https iOS with self signed certificate
  27. curl: Unknown error (0x80092012) – The revocation function was unable to check revocation for the certificate
  28. SSL “Peer Not Authenticated” error with HttpClient 4.1
  29. How can I set SignalR in Android Studio to ignore SSL issues for delvelopement
  30. Renew kubernetes pki after expired

Leave a Comment