Learn how easy it is to sync an existing GitHub or Google Code repo to a SourceForge project! See Demo

Close

#57 PKCS#12 multiple keys and certificates

open
nobody
None
5
2010-08-08
2010-08-08
Gentil Kiwi
No

It seems that XCA can't import multiple certificates and keys from ONE PKCS#12 file (it imports only the first)

Discussion

  • For certificates this is not true (in theory).
    For keys this is true.

    Can you provide a sample PKCS#12 file with multiple keys for testing ?
    Can you provide a sample PKCS#12 file with multiple certs that are not all shown in the import dialog ?

     
  • Gentil Kiwi
    Gentil Kiwi
    2010-08-20

    Sampke PKCS#12 - (pwd : mimikatz)

     
    Attachments
  • Gentil Kiwi
    Gentil Kiwi
    2010-08-21

    In attached file, a sample PKCS#12 file with 2 certificate (only one shown in xca import dialog box) and 2 associated key (again, only one shown)

    > openssl pkcs12 -in monconteneur.pfx -info -noout -password pass:mimikatz
    MAC Iteration 2000
    MAC verified OK
    PKCS7 Data
    Shrouded Keybag: pbeWithSHA1And3-KeyTripleDES-CBC, Iteration 2000
    Shrouded Keybag: pbeWithSHA1And3-KeyTripleDES-CBC, Iteration 2000
    PKCS7 Encrypted data: pbeWithSHA1And40BitRC2-CBC, Iteration 2000
    Certificate bag
    Certificate bag