Backing Up Certificates using OpenSSL applies to Nginx/Apache
Article Purpose: This article provides step-by-step instructions for backing up certificates for Apache/Nginx using OpenSSL. If this is not the solution you are looking for, please search for your solution in the search bar above.
Exporting to a PKCS#12 File using OpenSSL
The PKCS#12 is created by combining both the private key and certificate into a single file using the OpenSSL command:
openssl pkcs12 -in certificate.crt -inkey private.key -export -out combined.pfx -certfile intermediate.crt
- certificate.crt = certificate
- private.key = private key
- combined.pfx = resulting PFX file (containing both the key and certificate)
- intermediate.crt = Intermediate, even though this is optional it is recommended.
Exporting to a identical server?
If you are exporting to a identical server then you would be able to copy the certificate.crt, private.key and CA certificates over onto the the other server without running the OpenSSL commands above.
Importing Your PKCS#12 File Into Apache OpenSSL
If you require instructions on how to split a PKCS#12 file for use with Nginx or Apache then please see here; https://support.globalsign.com/customer/portal/articles/1226639