Seems to me that you problem is that you didn't supply
password.
PKCS12 format stores Private + Public key pair
encrypted with password.

--- Matthew Hall <[EMAIL PROTECTED]> wrote:
> 
> I'm trying to find out how to take my ca.crt file
> (signed
> by my own CA self) and convert it to pkcs12 format
> for importation
> into Mozilla, so that Mozilla will recognize
> anything else signed
> by me as 'OK'.
> 
> Converting it to DER format was easy:
> 
> openssl x509 -in ca.crt -out ca.der -outform DER
> 
> I'm having issues doing the same with pkcs12, I
> found something
> that seemed close:
> 
> openssl pkcs12 -export -inkey ca.key -in ca.crt -out
> ca.p12 -name
> "Angui.sh Certificate Authority"
> 
> But I thought I remember seeing a warning against
> doing that since
> it may include sensitive information into that file.
> And what's with
> the Export and Import passwords? What are they
> exactly? Am I missing
> some other command-line args, or is there a better
> way?
> 
> Can someone help?
> 
> Thanks!
> 
> -- 
> It's always September somewhere on the 'net. |
> http://angui.sh
> Another proud member of Eep's killfile.      | Unix
> Sys. Admin.
> unreal://angui.sh                            |
> [EMAIL PROTECTED]
> 
>
______________________________________________________________________
> OpenSSL Project                                
> http://www.openssl.org
> User Support Mailing List                   
> [EMAIL PROTECTED]
> Automated List Manager                          
[EMAIL PROTECTED]


__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus – Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to