How to export SSL from cPanel with .pfx

webdsn · Jun 21, 2018

I have one server use cpanel with linux OS
but I have one account need export SSL Certificate to windows server

I saw some teaching post say use this command with root

openssl pkcs12 -export -out /backup/domain_name.pfx -inkey /etc/ssl/private/domain_name.key -in /etc/ssl/certs/domain_name.crt

but in my server I do not find these file

/etc/ssl/private/domain_name.key
/etc/ssl/certs/domain_name.crt

I can confirm these Certificate already installed

In fact I do not find the domain key or crt file in /etc/ssl/certs/ or /etc/ssl/private

cPanelMichael · Jun 21, 2018

Hello @webdsn,

Certificates are not stored as .crt or .key files in cPanel & WHM. You can find the combined key and certificate in the following file:

Code:

/var/cpanel/ssl/apache_tls/domain.tld/combined

Replace "domain.tld" with the domain name of the certificate and key you want to obtain. You can then manually copy the certificate and key text into individual .crt and .key files in order to run that command.

Thank you.

webdsn · Jun 21, 2018

cPanelMichael said:
Hello @webdsn,

Certificates are not stored as .crt or .key files in cPanel & WHM. You can find the combined key and certificate in the following file:

Code:

/var/cpanel/ssl/apache_tls/domain.tld/combined

Replace "domain.tld" with the domain name of the certificate and key you want to obtain. You can then manually copy the certificate and key text into individual .crt and .key files in order to run that command.

Thank you.

Thanks your reply

I already found that file

But I saw several sets of encoded content in this file
one start by BEGIN RSA PRIVATE KEY
and three start by BEGIN CERTIFICATE

I don't know which part is .key or .crt file

In addition, I searched for some teaching articles to use this command to generate PFX files.
Is this directive wrong or not applicable?

openssl pkcs12 -export -out /backup/domain_name.pfx -inkey /etc/ssl/private/domain_name.key -in /etc/ssl/certs/domain_name.crt

cPanelMichael · Jun 25, 2018

webdsn said:
But I saw several sets of encoded content in this file
one start by BEGIN RSA PRIVATE KEY
and three start by BEGIN CERTIFICATE

I don't know which part is .key or .crt file

Hello @webdsn,

The following content is for the .key file:

Code:

-----BEGIN RSA PRIVATE KEY-----
CONTENTHERE
-----END RSA PRIVATE KEY-----

The following content is for the .crt file:

Code:

-----BEGIN CERTIFICATE-----
CONTENTHERE
-----END CERTIFICATE-----

webdsn said:
In addition, I searched for some teaching articles to use this command to generate PFX files. Is this directive wrong or not applicable?

That command should work as long as you manually separate out the data from the combined file into individual .key and .crt files.

Thank you.

webdsn · Jul 9, 2018

cPanelMichael said:
Hello @webdsn,

The following content is for the .key file:

Code:

-----BEGIN RSA PRIVATE KEY----- CONTENTHERE -----END RSA PRIVATE KEY-----

The following content is for the .crt file:

Code:

-----BEGIN CERTIFICATE----- CONTENTHERE -----END CERTIFICATE-----

That command should work as long as you manually separate out the data from the combined file into individual .key and .crt files.

Thank you.

Thanks your reply
I will try this~

Thread starter	Similar threads	Forum	Replies	Date
C	How to export all failed IPs from cpHulk into txt/csv?	Security	2	Jan 28, 2022
R	OWASP - mod security export rules status	Security	1	May 18, 2016
K	how to export cPHulk blacklist	Security	6	Apr 30, 2016
S	Export CPHulk Temp Blacklist	Security	3	Sep 5, 2014
B	/scripts/pkgacct does not export SSL cert and dedicated IP	Security	0	Dec 25, 2009

Search

Search

How to export SSL from cPanel with .pfx

webdsn

Active Member

cPanelMichael

Administrator

webdsn

Active Member

cPanelMichael

Administrator

webdsn

Active Member