My registrar gave me a .crt and a .pem file for my SSL request - Can't export to PFX, so how can i use it in Azure?

1
votes

I guess the title say it all.

Here's what I did :

  1. I used IIS 7 to create a certificate request, it gave me a txt file.

  2. I copy / paste the text in my registrar SSL service provider for a particular domain

  3. After two email confirm, my SSL request is accepted by my registrar (GANDI.net)

  4. I get a download for - a *.crt file and a *.pem file

  5. I can install the certificates but just can't import these directly from IIS

  6. After installing it shows on crtmgr.exe but I CAN'T EXPORT TO *.pfx file (grayed)

  7. Windows Azure need a PFX file

2
iissslazure
Which method do you use to install the certificates?knightpfhor

2 Answers

3
votes

The certificate has to be marked as exportable for the cert tool to be able to export it.

You can try if openssl can do it with the pkcs12 toolset. I don't have an instalation handy to test, but something like the following:

openssl pkcs12 -export -in file.pem -inkey file.crt -passin password -out file.p12

There are many Windows ports of OpenSSL, like OpenSSL for Windows.

0
votes

You can use IIS Administrator to create the pfk file. I wrote up the entire end-to-end procedure in this SO answer: convert p7b to pfx for Azure.