This can be performed with OpenSSL:
openssl pkcs12 -in domain.pfx -clcerts -nokeys -out domain.cerOr to get all certificates (including intermediaries, root etc.) and private key we can issue:
openssl pkcs12 -in domain.pfx -nocerts -nodes -out domain.key
openssl pkcs12 -in domain.pfx -out everything.pem –nodesCopy the files to:
/etc/apache2/ssl
and ensure the appropriate permissions are set:
chown -R root:root /etc/apache2/sslI prefer to keep organization specific certificates separely from the system ones - but for reference you can also copy them to:
chmod 700 /etc/apache2/ssl
chmod 600 /etc/apache2/ssl/*
/etc/ssl/cert
and
/etc/ssl/private
No comments:
Post a Comment