![]() ![]() Use the browse options to select your key storage file and certificate file.Otherwise uncheck the box 'Encrypted Private Key'. If applicable, put in the decryption password.Right-click anywhere inside the new keystore.Select the files in the unzipped ZIP file, from the folder 'Root certificates' to import.Right-click on the entry and select 'Edit chain' and then 'Apend certificate'.Select the visible entry for your trusted certificate.The new Trusted Certificate entry will appear in the KeyStore Entries table with the chosen alias.Enter the alias of the new Trusted Certificate and press OK. ![]() The Trusted Certificate Alias dialog will appear.Click on the required certificate file or type the filename into the File Name text box.Select the drive and folder where the certificate file is stored.The Import Trusted Certificate dialog will appear.Alternatively click on the Import Trusted Certificate tool bar button: From the Tools menu, choose Import Trusted Certificate.Press the OK button to commence generation and produce the CSR.īe aware that you need the created KeyStore later when the certificate has been issued to import.Use the Browse button to select a CSR File location.The latter is useful for SSL certificates with SubjectAlternativeName extensions. For PKCS#10 format you can optionally enter a company name (which becomes an "unstructuredName" attribute in the request) and/or add the extensions from the certificate to the request.Select Format PKCS#10 and Signature Algorithm. Enter the Key Pair entry's password and press the OK button. If required the Unlock Entry dialog will be displayed.Select Generate CSR from the pop-up menu. Right-click on the Key Pair entry in the KeyStore Entries table.The new Key Pair entry will appear in the KeyStore Entries table.Enter the password with which to protect the new Key Pair entry, confirm it and press the OK button. If required the New Key Pair Entry Password dialog will be displayed.Enter the alias name for the new Key Pair entry and press the OK button.The New Key Pair Entry Alias dialog will be displayed.Select Version 3 and Signature Algorithm SHA256 and enter a Validity Period, Serial Number and Name.The Generate Key Pair Certificate dialog will be displayed.The Generating Key Pair dialog will be displayed and will remain visible until Key Pair generation has completed.Select the RSA Algorithm and a Key Size of 4096 and press the OK button. The Generate Key Pair dialog will be displayed.From the Tools menu, choose Generate Key Pair.The new KeyStore will appear as an additional Untitled tab.Select the 'PKCS #12 Public-Key Cryptography Standards #12 KeyStore'. The New KeyStore Type dialog is displayed.Alternatively click on the New tool bar button. (order your certificate and wait for issuance).To start from scratch and with a PFX as end result, please follow the items below This manual describes the most often used functions, like creating a keypair and CSR, importing your certificate into the keystore, exporting the keypair as PFX or PEM format, and importing a PEM key to convert to PFX. Keystore Explorer is a graphical user interface with the same powers as OpenSSL, and used for many certificate conversions. ![]()
0 Comments
Leave a Reply. |