To generate FIPS compliant pkcs12 file using Openssl
Originally Published: 2009-12-07
Article Number
Issue
In FIPS mode, when importing pkcs12 file created using openssl (with default options), R_PKCS12_DECODE returns error 10009 : NOT_AVAILABLE.
Cause
Resolution
openssl pkcs12 -export -in <your server cert>.pem -inkey <your server key>.pem -out mycert.p12 -descert
The -descert option will instruct openssl to encrypt pkcs12 certificates with triple DES.
Related Articles
User Access Review incorrect value for Rows/Page in RSA Identity Governance & Lifecycle Number of Views RSA Smart Card Middleware 3.6 PKCS 11 Developer Guide Number of Views Oracle AFX connector message "DH Parameters without subprime Q are not FIPS 140 approved" in RSA Governance & Lifecycle Number of Views gpg: no valid OpenPGP data found. gpg: decrypt_message failed eof Number of Views RSA Governance & Lifecycle - sap2csv: Export SAP Tables into csv files Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.9 Release Notes (January 2026) Artifacts to gather in RSA Identity Governance & Lifecycle RSA Governance & Lifecycle 8.0.0 Administrators Guide RSA Governance & Lifecycle 8.0.0 Installation Guide
Don't see what you're looking for?
