Project

General

Profile

Feature #1192

Certificate Manager - Ability to Encrypt Private Keys When Exporting

Added by Joe Kelly over 8 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Certificates
Target version:
-
Start date:
01/13/2011
Due date:
% Done:

0%

Estimated time:

Description

I'm currently running pfSense 2.0-BETA5 (i386) built on Tue Jan 11 15:17:51 EST 2011. I love the Certificate Manager and a nice feature to add would be the ability to optionally encrypt private keys when exporting them. When you click the export button, the system should prompt you with "Do you want to encrypt the exported private key?" If you answer "yes", the key should be encrypted, otherwise it should be unencrypted.

This command should encrypt the key (works for me, anyway): openssl rsa -in unencrypted.key -des3 -out encrypted.key

To reverse the encryption (not sure why you would want to do that...), use this: openssl rsa -in encrypted.key -out unencrypted.key

This feature would make it easier to ensure that unencrypted private keys aren't floating around all over the place.

Also available in: Atom PDF