Obtaining and Importing SSL Client Certificates
- Last Updated: December 18, 2024
- 1 minute read
- MOVEit Automation
- Version 2024.1
- Version 2024
- Documentation
See also: About SSL Client Certificates.
Obtaining a Certificate
Certificates are typically delivered in one of the following forms:
- Two ASCII files with extensions
.crtand.key(or.cerand.key). - One binary file with the extension
.p12or.pfx.
- From the server administrator of your FTP server, obtain the following:
- A certificate that has been registered with the FTP server.
- The password for that certificate.
- Put the certificate files on the computer that is running MOVEit Automation . If you are using a network file transfer mechanism to transmit the certificate files, use the proper ASCII vs binary transfer method.
Converting the Certificate
Microsoft software imports client certificates from
.p12
(also known as
.pfx
) files. If you received
.crt
and
.key
files instead of a
.p12
file, you must convert them to
.p12
format. You can do this with the free program OpenSSL.exe from the
OpenSSL Project.
Example
You receive the files
fred.crt
and
fred.key
. To convert them to a single
fred.p12
file, use the following command:
openssl pkcs12 -inkey fred.key -in fred.crt -export -out fred.p12
The command prompts for the password to the
fred.key
file before it writes the
fred.p12
file.
Importing the Certificate
MOVEit Automation accesses the Current User store when looking for certificates, and can install (import) a certificate into this store.
- In Web Admin, select RESOURCES > Keys and Certs > Import > SSL Client Cert. Select the
.p12file and click Open. - Provide the password and click OK.