iis security: SSL, private key with a blank password -- iis security

SSL, private key with a blank password

Edward Kniazycki
8/30/2007 6:26:24 AM

iis security: Hello,
Could you please help me solving the following problem: I've got both
private key (.key) and SSL certificate (.cer) files, generated by the
company hosting my domain. (I've ordered them through their website,
so I didn't create a certificate request from IIS Manager.)
Now I'm trying to install the certificate using IIS Manager (Windows
2000 Server/IIS 5.0). There is problem with the blank password in
the .key file - IIS Manager requires not empty string when importing
the key file. *What is the proper way of instaling SSL certificate
using key file with the blank password?*
Kind regards
Edward

Re: SSL, private key with a blank password

Edward Kniazycki
9/3/2007 12:45:00 AM

I've found the solution (and later received the same from my CA
support); briefly:
you need openssl (www.openssl.org) to convert private key and
certificate into a single (pkcs12 format) file, with pfx extension.
Run:

openssl pkcs12 -export -out my_domain.pfx -inkey my_domain.key -in
my_domain.cer

assuming my_domain.key contains private key, my_domain.cer -
certificate. Then you need to import the my_domain.pl.pfx into
Certificates snap-in in MS Management Console (mmc). That's all.