In some cases it’s necessary to create a pfx file which contains the root and intermediate certificates. We have an application that will not accept the certificate without the certificate chain in there. So here’s how to make that work.
Posts Categorized: PKI (Certificates)
A little article about Certificate requesting and processing with OpenSSL.
I got this error trying to generate a .pfx file from a newly received certificate. The error scared me a little cause I was absolutely sure I tried to match the correct private key with the certificate.
Question from a reader (glad to hear I have any). How to save a certificate when you do not have a Windows PC.
Howto fix SSL Error 61 You have not chosen to trust the issuer of the server’s security certificate on Mac OSX Lion
So this one took me some unnecessary time cause of all the posts online with wrong or dated information. If you google you will read a lot about creating appstore\cacert folders via Terminal etc. etc etc. This might work for the older ICA Clients, however for Citrix Receiver it will not.
In this article I’m going to show you the commands you need to convert your .PFX Certificate file to a seperate certificate and keyfile. This article can come in handy when you need to import your certificates on devices like Cisco routers/loadbalancers etc. where you probably need to import the certificates and keyfiles in plain text (unencrypted). My tool of choice (but there might be others) is OpenSSL for Windows, which can be downloaded here
In this topic I hope to give a little information about certificates, PFX files and how to export them into other formats. A lot of applications require a certificate in some format (encrypted or not) to encrypt their datastream. In this topic I’m going to to cover how to create a PFX file. A PFX file is an encrypted file that contains both your public and your private key, and is password protected. I’m not going to cover how pki works, but just click this link or use Google and you’ll find all the information you need.