Exporting the certificate with its private key (
If you are using
Prerequisites: You are using
If you are using
NOTE: The private key of the server certificate validates the public key presented to the display by the client station. A server certificate without a private key is less secure than one with its private key. Without the encryption of the private key, a malicious user could install the certificate into devices that should not be allowed to make a connection. However, when a PIN is involved, as it is with arming and disarming an intrusion zone, the risk is low.
Perform the following steps:
NOTE: The private key of the server certificate validates the public key presented to the display by the client station. A server certificate without a private key is less secure than one with its private key. Without the encryption of the private key, a malicious user could install the certificate into devices that should not be allowed to make a connection. However, when a PIN is involved, as it is with arming and disarming an intrusion zone, the risk is low.
Perform the following steps:
- To export the certificate with its private key, expand ; double-click CertManagerService; in the User Key Store, select the certificate you created and click Export.The Certificate Export window opens.
- Enable
Export the private key, create and confirm a strong password to protect the key, record the password in a safe location and click OK.A File Chooser window opens. - Save the file in a location other than the location you used for the first save, for example,
C:\certs.Since you will use an OpenSSL command prompt to convert the .pem file to a .p12 file, a short path will make it easier to enter the commands.
The next procedure downloads OpenSSL to create a .p12 certificate.