Hi Laszlo, > Try this (untested): > > openssl req -config openssl.cnf -new -out my-server.csr > openssl rsa -in privkey.pem -out my-server.key
Here's what I tried: C:\OpenSSL\bin>openssl req -config openssl.cnf -new -out my-server.csr Loading 'screen' into random state - done Generating a 1024 bit RSA private key .............++++++ ..........................................++++++ writing new private key to 'privkey.pem' Enter PEM pass phrase: PASSWORD Verifying - Enter PEM pass phrase: PASSWORD ----- You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) [AU]:CN State or Province Name (full name) [Some-State]:DF Locality Name (eg, city) []:CITY Organization Name (eg, company) [Internet Widgits Pty Ltd]:COMPANY Organizational Unit Name (eg, section) []: Common Name (eg, YOUR name) []: Email Address []: Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []:PASSWORD An optional company name []:COMPANY C:\OpenSSL\bin>openssl rsa -in privkey.pem -out my-server.key Enter pass phrase for privkey.pem: PASSWORD unable to load Private Key 3688:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:.\ crypto\evp\evp_enc.c:461: 3688:error:0906A065:PEM routines:PEM_do_header:bad decrypt:.\crypto\pem\pem_lib. c:425: Any help? Thanks in advance Daniel -- http://mail.python.org/mailman/listinfo/python-list
