PFX import always gives Incorrect password error
I tried to generate a private key and certificate using OpenSSL v3.0.1 on x64 using the command:
"C:\Program Files\OpenSSL\bin\openssl.exe" req -x509 -sha256 -days 7300 -newkey rsa:2048 -keyout ProductPrivate.key -out ProductCertificate.crt
Then I try to package the key and certificate into a single PFX file using the command:
"C:\Program Files\OpenSSL\bin\openssl.exe" pkcs12 -export -out KeyPackage.pfx -inkey ProductPrivate.key -in ProductCertificate.crt -passout pass:superevil -passin pass:secret
Here is the actual screenshot, you can see all steps completes successfully and that you can see the password I set it up with.
I verified that all three files are created:
Next I took the pfx and try to import it into a certificate store of couple of machines, however everywhere I tried, I got the same password incorrect error. I used this same instruction 5 - 6 years ago and everything worked so I don't know what changed? do you happen to know?
The screen below proof that I have the right password for the pfx entered.
I found the answer, this is only issue if I use openssl v. 3.0.1. I test the same steps against openssl 1.1 and the import works.
- SSL: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch
- Can't send client certificate via SslStream
- How to secure multiple wildcard domain names in single SSL certificate?
- cURL error 60: SSL certificate problem: certificate has expired
- Importing SSL Certificate into Eclipse
- WARN: Establishing SSL connection without server's identity verification is not recommended
- How to connect an ESP32 to MQTT server with public IP and SSL?
- SSL Localhost Privacy error
- Load CA root certificate at runtime in Java
- CertPathValidatorException : Trust anchor for certificate path not found - Retrofit Android
- CURL showing "No required SSL certificate was sent" eve
- Securing grafana ingress with tls in kube-prometheus-stack values.yaml and make grafana available via https
- MariaDB update causes client connection problem : mariadb.OperationalError: TLS/SSL error: SSL is required, but the server does not support it
- HTTPS connections to cloudfront / S3 using godaddy domain
- SSL Self-Signed Certificates Issue in Gitlab
- Composer Curl error 60: SSL certificate problem: unable to get local issuer certificate
- Nginx keeps showing "welcome to nginx" for https but it's working fine with http
- PostgreSQL `aws_s3` Extension: SSL Certificate Verification Failed with Self-Signed Certificate
- SSLmode in FireDac for connection to Postgres
- SSL/TLS error on exposing Fuction App in API Management
- Mutual TLS connection from OpenLiberty with custom keystore
- How to solve SSL certificate: self signed certificate when cloning repo from github?
- How to disable HTTPS or change to HTTP in dev and prod version on symfony?
- TCP proxy with reading payload
- Unable to establish SSL connection, how do I fix my SSL cert?
- How to make Sinatra work over HTTPS/SSL?
- How to disable SSL verification in alpine's apk?
- Add Self Signed Certificate without prompting Yes/No from User
- .NET 8 api with Caddy reverse proxy not working for SSL
- ERR_ECH_FALLBACK_CERTIFICATE_INVALID error on Chrome (117.0.5938.132) on Windows