is there a way to extract the private key used for a CA Signed cert off of Clearpass? We are using clearpass v6.6 and i have the encrypted private key file and the key to decrypt used when generating the CSR. i need to get the private key out to use for some SSL inspection on an edge firewall?
hi there, no we are not using onboard
I generated a CSR for a HTTPS certificate for when customers browse to CPPM for Guest registration. as part of this i obtained an encrypted private key file and set a password to use (assume to decrypt private key file). i received signed certificate from CA and installed, providing the encrypted private key file and password. Certifictae installed fine.
What i want to do though some testing around SSL inspection so want to access the CPPM Guest registration externally via a firewall and have the firewall SSL Inspect the inbound connection to CPPM. for this to work it needs to decrpyt the session so to do this i need the signed CA cert and the private key to install on the firewall, it can then decrpyt (private key), inspect and re-encrpt (public key in CA cert) and pass on to CPPM. So i need the private key from the public/private key pair generated as part of generating the CSR.
thanks, i have done this already but it still shows private key in encrypted format!
-----BEGIN ENCRYPTED PRIVATE KEY-----
----END ENCRYPTED PRIVATE KEY-----
unless this is not the case and it is the actual private key?
ok, so this is not some CPPM propriety encryption, i can use openSSL or something similar?
ok thats great, thanks Tim.
will give this a go.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.