This repository has been archived by the owner on Mar 12, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 18
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
4 changed files
with
54 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,16 @@ | ||
Replace this file with your client certificate in .pem format (REQUIRED): | ||
|
||
-----BEGIN CERTIFICATE----- | ||
... | ||
-----END CERTIFICATE----- | ||
|
||
IMPORTANT: | ||
If you have a certificate in .PFX format, you can extract the private key | ||
and the client certificate from it using the OpenSSL library. | ||
You just need to run the following commands to generate the `private_key.pem` | ||
and `client_cert.pem` files: | ||
|
||
```bash | ||
openssl pkcs12 -in yourfile.pfx -nocerts -out private_key.pem | ||
openssl pkcs12 -in yourfile.pfx -clcerts -nokeys -out client_cert.pem | ||
``` |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,28 @@ | ||
Replace this file with your private key in .pem format (REQUIRED): | ||
|
||
-----BEGIN PRIVATE KEY----- | ||
... | ||
-----END PRIVATE KEY----- | ||
|
||
IMPORTANT: | ||
1 - If you have an encrypted private key, add its passphrase to the | ||
private_key_pass.txt file. | ||
|
||
2 - You may see this error `Failed to parse private key` if you attempt | ||
to use encrypted private keys, since some encryption algorithms are not | ||
supported by the Meadow TLS provider (mbedTLS). In that case, try to encrypt | ||
your private key using another algorithm, such as the RSA algorithm with DES3 | ||
(Triple DES) encryption and the traditional PKCS#1 formatting, which can be done | ||
by using the OpenSSL library: | ||
|
||
```bash | ||
openssl rsa -in private_key.pem -out private_key_output.pem -des3 -traditional | ||
``` | ||
|
||
Then, you should get a private key with a header like this: | ||
``` | ||
-----BEGIN RSA PRIVATE KEY----- | ||
Proc-Type: 4,ENCRYPTED | ||
DEK-Info: DES-EDE3-CBC,637E819E82DF740E | ||
``` | ||
``` |
Empty file.