Hello. I have a .pem certificate that I need to use with Citrix SSO. This format is not supported by default, so I used this way to convert it to .pem
You can use the openssl command to convert nearly any certificate format to another. PFX is another name for a pkcs12 container.
If you can extract the cert in PEM format curl should be able to use it.
openssl pkcs12 -in cert.pfx -clcerts -out cert.pem
Looks like it was converted well. But after that I’m trying to open it by double-clicking the file and use KDE GUI. It looks like it can be imported there (“Import” button persists) but it demands a password to unlock the cert. And the password I used while decoding is not actual (I used the same password everywhere pasting it)
(sudo password is not fine too).
Is it okay to use the GUI to import the certificate (and what password do I need then?) Or better to use a terminal commands?
Anyway, I used the combo with
sudo cp *.pem /etc/pki/trust/anchors sudo update-ca-certificates
And found the cert in
trust list type=cert type: certificate trust: anchor category: other-entry
But not sure if it’s okay because the cert’s password was not asked.