Hello Everyone,
I thought I might drop a post that could potentially be helpful for someone who experiences the same sort of thing as I do each time I have to renew my SSL certificates.
Context
Our IT department sends me a single PFX file when it is time to update the certs.
Issue
Docebo needs to receive three distinct files. The Cert, The Intermediate CA, and the Key
Solution
I make use of an application called OpenSSL (free/open source).
I have a folder with the openssl executable inside.
Place your PFX file in the same folder as the executable
Open this folder location in your command prompt
To get the Key - enter the following
openssl pkcs12 -in nameOfFile.pfx -nocerts -out nameYouWant.pem -nodes
Enter the password - (note that the screen will not update)
Open nameYouwant.pem with notepad
Remove all the stuff except
-----BEGIN PRIVATE KEY-----
All the cryptic stuff in the middle
-----END PRIVATE KEY-----
Save it out as myKey.pem
To get the Cert - enter the following
openssl pkcs12 -in nameOfFile.pfx -nokeys -out nameYouWant.pem
Enter the password - (note that the screen will not update)
Open nameYouwant.pem with notepad
In my case - I get three instances of
-----BEGIN CERTIFICATE-----
All the cryptic stuff in the middle
-----END CERTIFICATE-----
I remove everything except the very first of the three.
Save it out as your myCert.pem
To get the intermediateCA, I remove the first certificate part and keep the remaining two.
-----BEGIN CERTIFICATE-----
All the cryptic stuff in the middle
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
All the cryptic stuff in the middle
-----END CERTIFICATE-----
Save this one out as myIntCA.pem
Use your own filenames as desired but keep the pem extension.
Upload them to Docebo in the proper areas.
This will not be the right process for everyone - but for those who have this need…
I hope it will help them someday.