Highest Voted 'pkcs' Questions

21

votes

1 answer

How to quickly identify SSH private key file formats?

Triggered today by Remote Desktop Manager, whose SSH Key Generator offered to save a private key in OpenSSH format, but then proceeded to store it in PKCS#1 / OpenSSL format, while using the same random *.pri file extension for two of the offered…

ssh-keys private-key pkcs

asked Jan 07 '20 at 07:51

Reto Höhener

1,803

7

votes

1 answer

How to import an SSH ed25519 key to GPG?

I have an SSH ed25519 key which I would like to import to GPG as an Authentication Subkey. There doesn't appear to be any documentation available on how to do this.

openssh gnupg ssh-keys x509 pkcs

asked Mar 15 '19 at 18:30

tcyrus

75

4

votes

1 answer

gpgsm: Cannot import private key

For signing emails, I requested an S/MIME certificate using the German academic DFN service. AT the end of this process, I get a .p12 file (PKCS12). I can convert this file to PEM using openssl pkcs12 -in TorstenBronger.p12 -nodes -out…

gnupg import private-key smime pkcs

asked Jun 10 '22 at 17:11

Torsten Bronger

500

2

votes

1 answer

openssl pkcs12 keeps removing the PEM passphrase from keystore's entry?

OpenSSL 1.0.1e 11 Feb 2013 Generating a self-signed certificate: openssl req -x509 -newkey rsa:1024 -keyout key.pem -out cert.pem -days 365 During the process a PEM passphrase is requested: Enter PEM pass phrase: Verifying - Enter PEM pass…

certificate openssl rsa pki pkcs

asked Nov 28 '13 at 13:36

XXL

1,489

2

votes

1 answer

Access to USB HSM Token

I have an ubuntu 24.04 and a Nitrokey HSM. I use p11tool --list-token-urls to list the HSM url. When I run it from a local session it works, and it…

ubuntu systemd pkcs

asked Sep 03 '24 at 06:57

mastupristi

165
5

2

votes

1 answer

How can I extract many P7M (pkcs#7) signed files?

I have many P7M files and I need to extract them to unsigned original file, I found some free tools but with these I have to extract each one and I want something to do a massive extraction or a command line to use in a batch command. Can I find…

batch digital-signature pkcs

asked Sep 23 '16 at 07:10

Tobia

2,403

2

votes

1 answer

How to produce p12 file with RSA private key and self-signed certificate?

I believe that the exact procedure below worked for me two weeks ago, but now it doesn't. I start with an RSA private key rsa.pem and generate my own self-signed certificate: openssl req -new -x509 -key rsa.pem -out rsa.cer then I try to create a…

ssl openssl rsa pkcs

asked Aug 31 '16 at 01:30

FullStack

229

1

vote

1 answer

Can't S/MIME sign using OpenSSL even if "verify" suceeds

I have a client certificate in Chrome, that I used for logging into StartSSL. I exported it using pk12util to certfile.p12. Now I want to use it for signing with S/MIME. I converted the p12 file to pem. First, I verify that the certificate will work…

openssl client-certificate smime x509 pkcs

asked Feb 26 '14 at 16:09

Janus Troelsen

2,355

1

vote

2 answers

How to extract the contents from a .p7m CAdES file?

I've got a .p7m file (identified by the UNIX file command as DER Encoded PKCS#7 Signed Data), and I would like to extract unwrap its contents. I don't have the signing (public) key, since I don't need to verify its signature: I just need to unwrap…

openssl smime pkcs p7m pkcs-7

asked Apr 15 '25 at 15:50

Danilo Piazzalunga

361

1

vote

1 answer

Is it possible to convert a PCKS#12 (p12) certificate to plain text via OpenSSL to read issuer, CNs etc?

I know that it is possible to convert a PEM (x509) certificate to plain text using OpenSSL the following way: openssl x509 -in some.pem -text Yet I cannot find -text option for openssl pkcs12 command. The closest that I have found so far is -info…

openssl pkcs

asked Jul 10 '24 at 11:17

Alexander Ites

113

1

vote

1 answer

Use PKCS#11 for SSH connection to the server to make token dependency

I have configured PKCS#11 remote ssh connection on my Ubuntu server such that users can login to it using a hardware token, as described here. However, in this condition, the user can login to the server and remove the token and give it to someone…

putty pkcs

asked Feb 16 '22 at 14:35

sajad

175

1

vote

1 answer

How to create a veracrypt volume on the command line not interactively with a keyfile stored on a PKCS#11 token

I am trying to create a new veracrypt container on the command line in a completely interactive fashion. To make things more complicated, I need to store a keyfile on a PKCS#11 token. From what I understood, I first need to import the keyfile to the…

command-line veracrypt smartcard pkcs

asked Sep 12 '19 at 15:18

mat

1,046

1

vote

0 answers

Windows 10 Logon using smartcard - Missing Driver

I am trying to log in to a domain account using smart card work but was not successful. I have the following environment setup for the test. Client Laptop (Lenovo P50) Windows 10 Fall Creator Windows Update: Up to date Installed the smart card…

smartcard pkcs

asked Jan 31 '18 at 05:53

Stanley

11

1

vote

0 answers

Why is openssl pkcs12 export adding extra root anchor cert, duplicating server cert on Mac OS X

[Originally posted on Slack Overflow, but comment thread complained about inappropriate venue.] We're working on switching from StartCom SSL Certificates to Let's Encrypt, and trying to get it set up to automatically work with macOS Server + Apache…

macos apache-http-server openssl letsencrypt pkcs

asked Jan 02 '18 at 16:29

Nick Williams

135

0

votes

1 answer

How to digital sign Excel document with a P12 file

I have a few Excel documents we need to sign at my job. Also some PDF ones. I've looked everywhere and all sites shows an "easy" answer but all lead to the same: obtain a digital id from microsoft. On their site they say "if you don't want to buy a…

microsoft-excel pdf digital-signature pkcs

asked Feb 15 '23 at 15:13

alvaroc

279

Questions tagged [pkcs]