FAQs
Certificate Signing Request (CSR) generation for S/MIME certificates enrolled using REST API
To generate a Certificate Signing Request (CSR) for S/MIME certificates enrolled using REST API, perform the following steps:
Step 1: Generate a Private Key
openssl genrsa -out smimeCert.key 2048
Step 2: Generate the CSR. Use your email ID as Common Name while generating CSR
Below snap gives some details.
openssl req -new -key smimeCert.key -out smimeCert.csr
Generating PKCS12 Certificate using x509
-
Save Private Key in a file (cert-privkey.crt)
-
Save x509 Cert in a file (cert-pickup.crt)
-
Run Below command to generate PKCS12 Certificate (certificate.pfx)
openssl pkcs12 -export -out certificate.pfx -inkey cert-privkey.crt -in cert-pickup.crt
Generating PKCS12 Certificate using PKCS7 Certificate
-
Save Private Key in a file (cert-p7b.key)
-
Save PKCS7 Cert in a file (cert-p7b-file.p7b)
-
Run Below commands to generate PKCS12 Certificate (smime-Final.pfx)
openssl pkcs7 -in cert-p7b-file.p7b -out smime-cert.pem -print_certs
openssl pkcs12 -export -inkey cert-p7b.key -in smime-cert.pem -name Smime-SectigoTest -out smime-Final.pfx
Need help?
Need help making a purchase? Contact us today to get your certificate issued right away.
Live chat
Click the button below or click "Chat with an Expert" to start chatting with us now!
