To use a PFX certificate in Kaspersky Security Center 13 Web Console, you must first convert it to the PEM format by using any convenient OpenSSL-based cross-platform utility.
To convert a PFX certificate to the PEM format in the Windows operating system:
openssl pkcs12 -in <filename.pfx> -clcerts -nokeys -out server.crt
openssl pkcs12 -in <filename.pfx> -nocerts -nodes -out key.pem
As a result, you get a public key as a .crt file and a private key as a passphrase-protected .pem file.
openssl rsa -in key.pem -out key-without-passphrase.pem
Do not use the same name for the input and output .pem files.
As a result, the new .pem file is unencrypted. You do not have to enter a passphrase to use it.
The .crt and .pem files are ready to use, so you can specify them in the Kaspersky Security Center 13 Web Console installer.
To convert a PFX certificate to the PEM format in the Linux operating system:
openssl pkcs12 -in <filename.pfx> -clcerts -nokeys | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > server.crt
openssl pkcs12 -in <filename.pfx> -nocerts -nodes | sed -ne '/-BEGIN PRIVATE KEY-/,/-END PRIVATE KEY-/p' > key.pem
openssl rsa -in key.pem -out key-without-passphrase.pem
Do not use the same name for the input and output .pem files.
As a result, the new .pem file is unencrypted. You do not have to enter a passphrase to use it.
The .crt and .pem files are ready to use, so you can specify them in the Kaspersky Security Center 13 Web Console installer.
Page top