Converting PKCS #12 files to be useful for the SSL Automation Tool
Today I had a customer who had a rather unusual way (at least for me) to get his certificate from his CA.
They provided him with a PKCS #12 file instead of the usual PKCS #7 file and chain. And this would be the only way they could get the cert out of them.
So how would we get that format converted to the proper format used by the SSL Automation Tool?
OpenSSL actually does this with a one liner.
openssl pkcs12 -in rui.pfx -passin pass:testpassword -out chain.pem -nodes
This gives you one file containing the private key and PKCS #7 certificate chain. So all you need to do now is delete the additional attributes and cut and paste the key to a seperate file and you are good to go and replace your certificates with the SSL Automation Tool.