September 29th, 2011
I needed to take a PFX certificate being used on IIS and move it to an Apache server (It’s a wildcard certificate).
Found a few helpful web pages, but the gist of the process is this:
- Export to PFX in IIS
- Copy the PFX to the Unix host
- Then execute the following on the Unix Host:
# Export the private key file from the pfx file
openssl pkcs12 -in filename.pfx -nocerts -out key.pem
# Export the certificate file from the pfx file
openssl pkcs12 -in filename.pfx -clcerts -nokeys -out cert.pem
# This removes the passphrase from the private key so Apache won’t
# prompt you for your passphase when it starts
openssl rsa -in key.pem -out server.key
Now you have the 2 important files from the PFX that you need for Apache – server.key and cert.pem.
All you need to do is create the VirtualHost directive for the SSL site and add the following parts inside of it:
SSLEngine on SSLCertificateFile /etc/ssl/private/cert.pem SSLCertificateKeyFile /etc/ssl/private/server.key
via Moving an IIS certificate to a nix / Apache2 / OpenSSL server and SSL Certificate Installation – Apache Server
Posted in Tech Stuff | Comments (0)
You must be logged in to post a comment.