Robert Kwiencien wrote: > I try to create the pkcs12 file with: > > [EMAIL PROTECTED] CA]$ openssl pkcs12 -export -in newcert.pem -inkey > private/cakey.pem -certfile cacert.pem -name "Laser" -out testcert.pem > Enter pass phrase for private/cakey.pem: > > > My pass phrase is corrent, but then I get: > > No certificate matches private key > > Can anyone give some advice?
It seems that you are trying to put the CA-key into the PKCS12 file. Not a good idea! The key to put into the PKCS12 should be the key belonging to the certificate of the user/server/client, so it's the one belonging to "newcert.pem". Cheers, Olaf -- Dipl.Inform. Olaf Gellert PRESECURE (R) Senior Researcher, Consulting GmbH Phone: (+49) 0700 / PRESECURE [EMAIL PROTECTED] A daily view on Internet Attacks https://www.ecsirt.net/sensornet ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]