SSL Configuration

OpenSSL commands

This manual describes descibes some usefull commands for a ssl configuration.

Create Private Key and CSR 

Create CSR from an existing  Private Key

Create CSR from an existing Certificate

Create a self-signed Certificate (crt)

Remove password from Private Key 

Convert Certificate OpenSSL

Onderstaande commando’s zijn voor het converteren van een file formaat naar het andere file formaat.

Converteer een DER file (.crt .cer .der) naar PEM

openssl x509 -outform der -in certificate.cer -out certificate.der

openssl x509 -inform der -in certificate.der -out certificate.pem

Converteer een PEM file naar DER

Converteer een PKCS#12 file (.pfx .p12)

Een pem bestand bevat een private key en certifica(a)t(en)

Voeg toe -nocert om alleen de private key om te zetten, of voeg toe -nokeys om alleen de certificaten om te zetten.

Converteer een PEM certificaat file en een private key naar PKCS#12 (.pfx .p12)

Controle CSR, Private Key of Certificaat met OpenSSL

With the following command you can check the information contained in a certificate, CSR and Private Key .

Check a CSR

Check a Private Key 

Check a Certificate

Check a PKCS#12 file (.pfx .p12)

Read a certificaat (.cer, .crt)

Debug OpenSSL

Error messages such as ” Private Key does not match the certificate ” or ” Certificate is not trusted,  can be debuged  by use of the following commands ..

Check a MD5 hash from a public key

With the following commands you can determine whether the information is the same in a Private Key .

Please let me know if this manual ‘SSL Configuratie’ was usefull to you. If there are  errors or you have suggestions regarding this manual, please let me know.

No rights can be derived from this manual



Maarten Schoonus

Leave a Reply