On Thu, Nov 26, 1998, Nuno Grilo wrote:
> I have a machine running WindowsNT+IIS with a certificate issued by
> verisign and which I will soon change to Unix+apache+mod_ssl.
> I would like to know if it is possible to transfer the private
> key/certificate from IIS to apache or will I have to ask verisign to
> issue a new certificate?
The certificate is a X.509 certificate, so you can use it with Apache, too.
But it can be encoded in a different envelop format. I guess IIS uses plain
DER while for Apache+mod_ssl+SSLeay you need it in PEM format. What you
usually need is to convert it.
For instance you can use the following SSLeay commands to convert your
iis-server.crt/iis-server.key files (assuming they are named this way and are
in DER format) to the server.crt/server.key files for mod_ssl:
$ ssleay x509 -inform DER -in iis-server.crt -outform PEM -out server.crt
$ ssleay rsa -inform DER -in iis-server.key -outform PEM -out server.key
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
