FAQs
Certificate Signing Request (CSR) generation for S/MIME certificates enrolled using REST API
To generate a Certificate Signing Request (CSR) for S/MIME certificates enrolled using REST API, perform the following steps:
Step 1: Generate a Private Key
openssl genrsa -out smimeCert.key 2048
Step 2: Generate the CSR. Use your email ID as Common Name while generating CSR
Below snap gives some details.
openssl req -new -key smimeCert.key -out smimeCert.csr
Generating PKCS12 Certificate using x509
-
Save Private Key in a file (cert-privkey.crt)
-
Save x509 Cert in a file (cert-pickup.crt)
-
Run Below command to generate PKCS12 Certificate (certificate.pfx)
openssl pkcs12 -export -out certificate.pfx -inkey cert-privkey.crt -in cert-pickup.crt
Generating PKCS12 Certificate using PKCS7 Certificate
-
Save Private Key in a file (cert-p7b.key)
-
Save PKCS7 Cert in a file (cert-p7b-file.p7b)
-
Run Below commands to generate PKCS12 Certificate (smime-Final.pfx)
openssl pkcs7 -in cert-p7b-file.p7b -out smime-cert.pem -print_certs
openssl pkcs12 -export -inkey cert-p7b.key -in smime-cert.pem -name Smime-SectigoTest -out smime-Final.pfx
Need assistance?
Contact our team for help with your purchase or issuing your certificate.
Live chat
Click the button below or click "Chat with an Expert" to start chatting with us now!
