I have an existing SSL cert for the server. I have been trying to convert the file to .pem and have not succeeded yet. Also tried just changing the file extension to .pem. I either get a message that the command used is not known or can't access the file, or private key not found. My original certificate was simply the Web Server Certificate and the Private Key text in an email. I had saved the text to 2 separate text files, then changed the extension to .crt. This worked fine for my web server before the FM13 update that takes over port 80 and 443.
So currently the default FMI certificate is in place in the Library/Filemaker Server/CStore folder . Would following these steps work if I used the CERTIFICATE IMPORT steps without requesting a new certificate from the certificate provider?
Or perhaps a sudo command for this command example:
fmsamdin certificate import c:\Documents\certificate.pem
--keyfile c:\Documents\certificateKey.pem -–keyfilepass password
Also I had combined my web server certificate text with the private key into one file and called it comboCert.crt and tried to convert it using:
openssl x509 -inform DES -in yourdownloaded.crt -out outcert.pem -text
openssl x509 -in mycert.crt -out mycert.der -outform DER
and then take the output of that, (i.e.
mycert.der) and call:
openssl x509 -in mycert.der -inform DER -out mycert.pem -outform PEM
any other help on this so I can understand and get the correct domain name certificate installed into the Cstore folder.
Hi, the new key you get from the fmsadmin command is a protected key with password. I think you will have to have a new certificat with the request pem file that fmsadmin created. My old key and certificate wasn't password protected. The other problem is with the certificat chain as Terena isn't in the root.pem file.
The bottom line is you probably have to get at new certrificate and I tested my method on two servers now.