Printer FriendlyEmail Article Link

Avalanche: Can I convert a P12 certificate into PEM format in order to use it in Avalanche?

  • Yes. Per FAQ11506 Avalanche only supports certificates in PEM format. If your retrieve a certificate from your IPsec gateway in P12 format you need to use OpenSSL ( in order to convert it to the supported PEM format.

  • How to extract public/private keys from PKCS12 (p12) format certificate?
  • Background: P12 format certificate consists of two parts: the normal certificate (the signed public key) and the private key (usually encrypted).
  1. Extract cert only: openssl pkcs12 -in cert2.p12 -out cert2.pem –nokeys (need to input the passwd)

  2. Extract private key only: openssl pkcs12 -in cert2.p12 -out cert2_key.pem –nocerts (need to input the password)

  3. Extract both cert and private key into single pem file: openssl pkcs12 -in cert2.p12 -out cert2.pem (need to input the password)

Product : Avalanche,SSL,IPSec,HTTP