cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted

How to obtain different Certificate parts

I have Certificate from Go Daddy tied to a domain name.  There are 2 files from GoDaddy.  1).  123XYZ.crt file.  I believe this is the server certificate (only 1 --Begin and -- end certificate line.)   2).  gd_bundle.crt I believe this is the intermediate certificate chain (3 -- Begin and -- End Certificate lines).  

 

I have an appliance that is asking me to create a .pfx file and to combine the private key and root certificate and Intermediate .crt files.  https://www.netiq.com/documentation/advanced-authentication-63/smartphone-applications/data/t481aiz1...

 

How can I obtain the necessary files from GoDaddy?  

1).  I have the private key.

2).  Domain certificate.

3).  Intermediate Certificate

4).  Trusted Room Certificate

 

So I can combine them all in 1 .pfx file.

 

1 REPLY 1
Highlighted

Re: How to obtain different Certificate parts

I have verified that the Private Key and the Domain Name certificate work and are correctly linked from https://www.sslshopper.com/certificate-key-matcher.html.

 

1).  I have the private key. - Verified

2).  Domain certificate.      - Verified

3).  Intermediate Certificate

4).  Trusted Room Certificate - Verified (see below)

 

The trusted root is verified by comparing the last -----BEGIN CERTIFICATE-----  -----END CERTIFICATE----- in the bundle downloaded from GoDaddy.  I compared to the gd-class2-root.crt (pem)  from https://aboutssl.org/go-daddy-root-certificates/

 

I have not been able to verify the complete bundle.  According to https://aboutssl.org/go-daddy-root-certificates/  In the 2nd table: GoDaddy Secure Server Certificate (Intermediate Certificate) – G2 gdig2.crt.pem (pem) 

This file matches the 1st certificate in the bundle that I received from GoDaddy.  But that same bundle from GoDaddy has 3 certificates inside it. 1 Intermentiate and other certificate that I am not familiar with and the root certificate.  

 

In order to fix this problem with microfocus: https://www.netiq.com/documentation/advanced-authentication-62/smartphone-applications/data/t481aiz1...  I will try to add what they say exactly in the order they say.  Meaning that I will only add the

 

 

1).  I have the private key. - Verified (.key file from appliance.

      a.  Verified to work with GoDaddy domainname cert.

      b.  https://www.sslshopper.com/certificate-key-matcher.html.

 

2).  Domain certificate.      - Verified (.crt from GoDaddy)

      a.  Verfiied to work with the .key file.

      b.  https://www.sslshopper.com/certificate-key-matcher.html.

 

3).  Intermediate Certificate

      a.  The 1st certificate in this chain file and only that 1st cert.

 

4).  Trusted Room Certificate - Verified 

      a.  The last certificate in the bundle chain.crt from GoDaddy.

      b.  Verified to match https://aboutssl.org/go-daddy-root-certificates/  In the 2nd table: GoDaddy Secure Server Certificate (Intermediate Certificate) – G2 gdig2.crt.pem (pem) 

 

Otherwise, I am not sure what can be next. I want to use what GoDaddy has given me, not to copy and past other certificates from a public web site.