- openssl pkcs12 -in [yourfile.pfx] -nocerts -out [keyfile-encrypted.key]
openssl pkcs12 -in [yourfile.pfx] -nocerts -nodes -out [keyfile-encrypted.key] # use this command if the first command generates empty certificate.
2. openssl rsa -in [keyfile-encrypted.key] -out server.key
3. openssl pkcs12 -in [yourfile.pfx] -clcerts -nokeys -out server.crt
4. openssl pkcs12 -in [certificate.pfx] -cacerts -nokeys -out [server-ca.crt]
5. openssl pkcs7 -print_certs -in [yourfile.p7b] -out server.crt (OPZIONALE)
A questo punto copiare il .cer in /etc/pki/tls/certs/ e il .key in /etc/pki/tls/private/
Dopo puntare questi file come in esempio:
