The OpenSSL program is a command line tool for using the various cryptography functions of OpenSSL's library. This tool is shipped with IMPS located in [Provisioning Server install dir]/bin.
The following table shows few useful commands of OpenSSL program to execute various commands that are related to managing certificates:
|
Commands |
Description |
|---|---|
openssl x509 -in cert.pem -text -noout |
Prints contents of .pem certificate. |
openssl.exe pkcs12 -in my.pkcs12 -info |
Prints contents of .p12 file. |
openssl.exe pkcs12 -export -chain -inkey key.pem -in cert.pem -CAfile cacert.pem -out my.p12 |
Converts .pem cert/keypair to .p12. |
keytool -list -v -keystore my.keystore |
Prints contents of a java keystore. |
keytool -list -v -alias myalias -keystore my.keystore |
Prints contents of a specific alias in a java keystore |
keytool -delete -alias myalias -keystore my.keystore |
Deletes an alias from a java keystore |
keytool -importkeystore -destkeystore my.keystore -srckeystore src.p12 -srcstoretype PKCS12 -srcalias 1 -destalias myalias |
Imports a .p12 file into a java keystore. |
keytool -import -trustcacerts -alias myrootca -file rootcacert.pem -keystore my.keystore |
Imports a .pem root ca certificate into a java keystore. |
|
Copyright © 2013 CA.
All rights reserved.
|
|