Handy OpenSSL Commands

To convert a certificate from PEM to DER:
  • openssl x509 -in cert.txt -inform PEM -out cert.bin -outform DER
To convert a certificate from DER to PEM:
  • openssl x509 -in cert.bin -inform DER -out cert.txt -outform PEM
To convert a key from PEM to DER:
  • openssl rsa -in key.txt -inform PEM -out key.bin -outform DER
To convert a key from DER to PEM:
  • openssl rsa -in key.bin -inform DER -out key.txt -outform PEM
Convert a PEM+KEY to PKCS12:
  • openssl pkcs12 -export -out client.pfx -inkey keyfile.txt -in cert.txt -certfile root.txt
Extract Private Key from PKCS12:
  • openssl pkcs12 -in client.pfx -nocerts -out keyfile.txt
Extract Public Cert from PKCS12:
  • openssl pkcs12 -in client.pfx -clcerts -nokeys -out cert.txt
Remove Password from Private Key:
  • openssl rsa -in keyfile.txt -out unpassworded.txt
Generate a client key:
  • openssl genrsa -out client.key 4096
Build a certificate request:
  • openssl req -key client.key -new -out client.req
Build a certificate request (advanced):
  • openssl req -new -newkey rsa:2048 -nodes -keyout key.txt -out certreq.txt -days 3650
Display Certificate Details:
  • openssl x509 -text -in cert.txt
Test a SSL Host w/certificate:
  • openssl s_client -connect your.ssl.site:443 -CApath c:\rootcerts -cert test.cer -key test.key

Thanks to the following internet sources for their contributions to this document


Comments

Post a Comment

Popular posts from this blog

PRB: Windows 8, MSXML4 Application Error 429: ActiveX component can't create object

Image
This article was previously published under MSXML4 WIN8 ELEVATION FAIL On This Page SYMPTOMS When you create an instance of an MSXML2.DomDocument40 in VB6 or VBSCRIPT (32-bit), you will receive the following error message: Application Error 429: ActiveX component can't create object The error only occurs if your process is running with elevated (administrator) privileges, on Windows 8.   CAUSE Microsoft broke this for some reason but chances are its an unmitigated security vulnerability.  (And, we like to be jerks). RESOLUTION To work around this problem, use either of the following methods: Downgrade to Windows 7, 2008, Vista, or XP Replace references to msxml4.dll with msxml6.dll  Replace MSXML2.DomDocument.4.0 with MSXML2.DomDocument.6.0 in your code STATUS This behavior is by design.  Or, maybe its a bug.  We really don't care, as long as you port your crappy VB6 code to .NET. MORE INFORMATION Steps to Reproduce Behavior Execute the following code in a compi...
Read more

Getting Started with GitHub and Visual Studio 2017

Image
Introduction Want to get started using git with Visual Studio but you're not sure what to do, how to get started, or you are confused by the command line? Good news, everyone! You can do nearly everything you want right from within Visual Studio 2017. All you need is the GitHub extension for Visual Studio, and a GitHub account. For my demonstration I am using a Pro account so I have the option for private repositories but this will work for free accounts as well. I wrote this because I couldn't find a step by step instruction how-to that didn't assume you were using Microsoft Team Services or using the git command line. In my usual style, this is terse and to the point, and a little rough around the edges. I hope you find this useful. Enjoy! Prerequisites Install Visual Studio 2017 Install GitHub extension for Visual Studio How To #1: Push an existing project into GitHub (and connect to GitHub for the first time) Open ex...
Read more

Installing OTRS 4.0 on Ubuntu Linux 14.04 with a MSSQL Backend

A couple of quick notes... this is not my usual style, this is fairly cutting edge with OTRS 4.0 released yesterday. I've been tinkering around with the beta for a while, and I wanted to do the install from scratch AND use Microsoft SQL Server for the data store. If you have been trying to do this yourself, like me you discovered it's not officially supported. The OTRS group wants you to install on Windows (blech). I'm here to tell you, this is possible, with some extra fiddling around. The biggest fiddle is getting an ODBC driver installed on Linux that will talk to Microsoft SQL Server, and is free. I used Microsoft SQL Server 2008 as my backend server, but I imagine any SQL Server version will do. Without further adieu, here's my notes. This is basically a rough draft, if you find this interesting and need more info, leave a comment. # Download source cd /opt wget http://ftp.otrs.org/pub/otrs/otrs-4.0.1.tar.gz # Install Pre-requisites apt-get install apache...
Read more