Menu
▾
▴
Re: [Ejbca-develop] importing existing ca
|
From: Ken G. <kgu...@te...> - 2004-05-29 14:14:36
|
On Saturday 29 May 2004 05:57 am, Tomas Gustavsson wrote: > There is no function to import external pkcs12-files in ejbca3 yet. > If it's needed it's on the todo list for 3.1. There is an internal > method already (used in the upgrade script from ejbca), but no > external command (cmd/sh). > > Cheers, > Tomas > > Ken Gunderson wrote: > > Hello: > > > > Probably a lame question, but... once I've created server.p12 file > > via OpenSSL, how do I go about importing it to ejbca's database? I > > understand how to add it to java's trusted ca certs truststore, but > > seem to be missing something somewhere about how to make it > > available in ejbca. > > > > TIA- That would explain why I couldn't figure out how to do it;-) I was=20 thinking I could from this bit in the README: "Converting OpenSSL CA: You can convert a PEM-style CA key to a PKCS12file that can be imported=20 in EJBCA. openssl pkcs12 -export -out server1.p12 -inkey cakey.pem -in ca.pem=20 -name privateKey" It would be nice to be able to do so for those looking to migrate more=20 or less "transparently" from some other system over to ejbca and=20 utilize existing installed root certs. For my purposes, I can live without it though. --=20 Best regards, Ken Gunderson GPG Key-- 9F5179FD "Freedom begins between the ears." -- Edward Abbey |
