Menu
I am using OpenSSL to convert my "me.p12" to PEM. When I generate "me.p12", I set a password for it. The "me.p12" contains a private key and a certificate.
When I convert it to PEM, I run command:
openssl pkcs12 -in me.p12 -out me.pem
Then, it asked me for Import Password:
Enter Import Password:
MAC verified OK
I entered the password I set to "me.p12", it was verified OK. But next, it ask me:
Enter PEM pass phrase:
I have no idea what is that? When I generate "me.p12" I haven't set any other password. So, what is that? How to figure this out?
483
A passphrase is a word or phrase that protects private key files. It prevents unauthorized users from encrypting them. Usually it's just the secret encryption/decryption key used for Ciphers. To change the passphrase you simply have to read it with the old pass-phrase and write it again, specifying the new pass-phrase.
PEM certificates are not supported, they must be converted to PKCS#12 (PFX/P12) format.
The PKCS #12 password is used to protect private data in the PKCS #12 file. This password is required to import the file. The user then telephones the recipient and provides the PKCS #12 password.
"Enter PEM pass phrase" because openssl doesn't want to output private key in clear text. The password is used to output encrypted private key
Below command can be used to output private key in clear text. No password is then asked.
openssl pkcs12 -nodes -in me.p12 -out me.pem
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
