Search This Blog

Tuesday, July 19

How to convert PKCS12 file for FIPS140 Mode compatible


  1. Extract the original private key and public certificate from the incompatible PKCS#12 format file into a traditional encrypted PEM format
    2. openssl pkcs12 -in <PKCS#12 Filename> -out <Encrypted PEM Filename>

  2. Generate a compatible PKCS#12 file
    3. openssl pkcs12 -keypbe PBE-SHA1-3DES -certpbe PBE-SHA1-3DES -export -in <Encrypted PEM Filename> -out <PKCS#12 Filename>

    Where:
    • <Encrypted PEM Filename> the encrypted PEM format file generated above.
    • <PKCS#12 Filename> is the output filename of the pkcs#12 format file

  3. (Optional) Delete unneeded files. At this point, you can delete the temporary unencrypted PEM file.


Source: http://help.globalscape.com/help/secureserver3/Converting_an_incompatible_PKCS_12_format_file_to_a_compatible_PKCS_12_.htm
Posted by at
Labels: , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)