Get RSA private key and certificate from GlobalSign certificate

I can generate my own private key and certificate as follows:

openssl genrsa -out privatekey.pem 2048

openssl req -new -x509 -key privatekey.pem -out g4certificate.pem -days 1095

Copy+pasting the certificate/private key parts into a database and executing a test toolkit returns a successful HMAC key exchange.

However, I've now purchased a GlobalSign ssl certificate and have the .pfx file.

How can I extract the equivalent RSA private key/certificate similar to those used when the toolkit returned a successful key exchange?

My attempt:

I tried to convert the .pfx file to a .pem file using the following command:

openssl pkcs12 -nodes -in filename.pfx -out filename.pem

The resulting .pem file contains 3 certificates and a private key with a header of '-----BEGIN PRIVATE KEY-----' and not '-----BEGIN RSA PRIVATE KEY-----'.

I've tried to copy+paste the private key out into a new document and saved it as privatekey.key. Then converted it using the following command:

openssl rsa -in privatekey.key -out privatekey_new.key

This produces a file with the '-----BEGIN RSA PRIVATE KEY-----' header which is like the self-generated RSA key.

However, when attempting the key exchange, I get the following error:

DEBUG [AbstractTest] - Failed: 
java.security.InvalidKeyException: Wrong key usage
at javax.crypto.Cipher.init(Cipher.java:1674)
at javax.crypto.Cipher.init(Cipher.java:1580)

Comments

Use Google instead of Bing with Windows 10 search

I want to use Google Chrome and Google search instead of Bing when I search in Windows 10. Google Chrome is launched when I click on web, but it's Bing search. (My default search engine on Google and Edge is http://www.google.com ) I haven't found how to configure that. Someone can help me ? Answer There is no way to change the default in Cortana itself but you can redirect it in Chrome. You said that it opens the results in the Chrome browser but it used Bing search right? There's a Chrome extension now that will redirect Bing to Google, DuckDuckGo, or Yahoo , whichever you prefer. More information on that in the second link.

linux - Using an index to make grep faster?

I find myself grepping the same codebase over and over. While it works great, each command takes about 10 seconds, so I am thinking about ways to make it faster. So can grep use some sort of index? I understand an index probably won't help for complicated regexps, but I use mostly very simple patters. Does an indexer exist for this case? EDIT: I know about ctags and the like, but I would like to do full-text search. Answer what about cscope , does this match your shoes? Allows searching code for: all references to a symbol global definitions functions called by a function functions calling a function text string regular expression pattern a file files including a file

How do I transmit a single hexadecimal value serial data in PuTTY using an Alt code?

I am trying to sent a specific hexadecimal value across a serial COM port using PuTTY. Specifically, I want to send the hex codes 9C, B6, FC, and 8B. I have looked up the Alt codes for these and they are 156, 182, 252, and 139 respectively. However, whenever I input the Alt codes, a preceding hex value of C2 is sent before 9C, B6, and 8B so the values that are sent are C2 9C, C2 B6, and C2 8B. The value for FC is changed to C3 FC. Why are these values being placed before the hex value and why is FC being changed altogether? To me, it seems like there is a problem internally converting the Alt code to hex. Is there a way to directly input hex values without using Alt codes in PuTTY? Answer What you're seeing is just ordinary text character set conversion. As far as PuTTY is concerned, you are typing (and reading) text , not raw binary data, therefore it has to convert the text to bytes in whatever configured character set before sending it over the wire. In other words, when y...

linux - Impossible to connect with ldap

IP : 192.168.0.70 (dell) DIT : (seen through ldapphpadmin) And for patricia duchesne: dn cn=patricia duchesne,ou=users,dc=memorandum,dc=pro cn patricia duchesne gidnumber 501 givenname patricia homedirectory /home/users/pduchesne loginshell /bin/bash objectclass inetOrgPerson | posixAccount | top sn duchesne uid pduchesne uidnumber 1000 userpassword {MD5}eFI0F0... IP : 192.168.0.60 (pb) NSSWitch is configured :

$cat /etc/nsswitch.conf passwd: files ldap group: files ldap shadow: files ldap gshadow: files hosts: files mdns4_minimal [NOTFOUND=return] dns networks: files protocols: db files services: db files ethers: db files rpc: db files netgroup: nis so is ldap-auth :$ cat /etc/auth-client-config/profile.d/ldap-auth-config [lac_ldap] nss_passwd=passwd: files ldap nss_group=group: files ldap nss_shadow=shadow: files ldap nss_netgroup=netgroup: nis and libnss : $ cat /etc/libnss-ldap.conf uri ldap://192.168.0.70 base dc=...

Notes

Search This Blog