[389-users] Decrypting SSL for 389-ds
David Boreham
david_list at boreham.org
Fri Nov 12 16:27:07 UTC 2010
On 11/12/2010 9:21 AM, Gerrard Geldenhuis wrote:
>
> I created a new certificate datase with certutil, and I can view the
> private key fingerprints with certutil -d . -K but I can't actually
> extract the private key from the certutil database. I can create a
> certificate sign request using certutil again. I thus have the private
> key but it is "hidden" from me.
>
I bet there is a way to get the private key out, but I have no idea how
(the very mention of certutil is giving me flashbacks..). Perhaps you
can just create a key pair with openssl and import the pkcs bits into
the NSS key store ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20101112/e34500b4/attachment.html>
More information about the 389-users
mailing list