On Thu, Oct 23, 2014 at 09:48:12AM -0700, Gregory Sloop wrote:
> TIA for any light you can shed on the situation.
For Windows 7/2008 compatible PKCS#12 files I use:
#! /bin/bash
...
openssl pkcs12 -export -name "$1" \
-inkey "$1-key.pem" -in "$1-cert.pem" -chain -CAfile rootcert.pem \
-keyex -CSP "Microsoft Strong Cryptographic Provider" \
-passin file:<(builtin printf "%s\n" "$pass") \
-passout file:<(builtin printf "%s\n" "$pfxpass") \
-certpbe PBE-SHA1-3DES -keypbe PBE-SHA1-3DES -out "$1".pfx
which indeed uses 3DES keys for the certificate and key. I guess
AES did not work for me either. I have not tested Windows 8/2012.
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
