You can't place a key without its certificate into a PKCS12. You need both - they are coupled together in this type of file. You can even store certificates that were not created with the supplied key, but at least one of the certificates must "match" the supplied key..
Mike -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I've tried the following and I always get "No certificate matches private key". openssl pkcs12 -in key.pem -out key.pkcs12 -export openssl pkcs12 -in key.pem -out key.pkcs12 -export -nocerts openssl pkcs12 -export -in key.pem -inkey key.pem -out key.pkcs12 -nocerts - -name "Sample name" The RSA key was originally generated on a Cisco Content Service Switch 11506 w/ a SSL Accelerator module. Please advise. - -- Jeremy M. Guthrie Systems Engineer Berbee 5520 Research Park Dr. Madison, WI 53711 Phone: 608-298-1061 Berbee...Decade 1. 1993-2003 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFAWzAZqtjaBHGZBeURAtTFAKCGQ0s0qngOifod2DACwVWSAzvLhwCffIBj 7TpcLh0rEjH5nYrUFiFjnFA= =skpw -----END PGP SIGNATURE----- ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
