There are scenarios that require you to implement your own private Certificate Authority (CA), such as VPNs, internal web servers, or lient authentication to web servers.
This is the fourth article in a four part series, that explains how to generate a Root Certificate, Client Certificates and Server Certificates, for authentication. In this article, you will learn how to use a tool called XCA to export the client certificate that was created earlier in this series.
Assumptions
- Download XCA from http://sourceforge.net/projects/xca/
- Install XCA (Admin Privilege Required)
- Create a Root Certificate, using XCA
- Create an Intermediary Certificate, signed with Root Certificate
- Create a Client Certificate, signed by the Intermediary Certificate
Exporting a Client Certificate, using PKCS#12 format
2. Highlight the desired certificate
3. Click on the “Export” button
4. Select the format as "PKCS#12 Chain"
5. Select the folder and filename to save the new information
6. Enter a name for the file, e.g. user@example.com
7. Enter an optional password. Leave it blank if no password will be used.
Congratulations!
You have exported you new client certificate.
See all the articles in this series:
See all the articles in this series:
- Create a Root Certificate
- Create a Client Certificate
- Create a Server Certificate
- Export a Client Certificate
