I'm trying to find out how to take my ca.crt file (signed
by my own CA self) and convert it to pkcs12 format for importation
into Mozilla, so that Mozilla will recognize anything else signed
by me as 'OK'.

Converting it to DER format was easy:

openssl x509 -in ca.crt -out ca.der -outform DER

I'm having issues doing the same with pkcs12, I found something
that seemed close:

openssl pkcs12 -export -inkey ca.key -in ca.crt -out ca.p12 -name
"Angui.sh Certificate Authority"

But I thought I remember seeing a warning against doing that since
it may include sensitive information into that file. And what's with
the Export and Import passwords? What are they exactly? Am I missing
some other command-line args, or is there a better way?

Can someone help?

Thanks!

-- 
It's always September somewhere on the 'net. | http://angui.sh
Another proud member of Eep's killfile.      | Unix Sys. Admin.
unreal://angui.sh                            | [EMAIL PROTECTED]

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to