To generate FIPS compliant pkcs12 file using Openssl
Originally Published: 2009-12-07
Article Number
Issue
In FIPS mode, when importing pkcs12 file created using openssl (with default options), R_PKCS12_DECODE returns error 10009 : NOT_AVAILABLE.
Cause
Resolution
openssl pkcs12 -export -in <your server cert>.pem -inkey <your server key>.pem -out mycert.p12 -descert
The -descert option will instruct openssl to encrypt pkcs12 certificates with triple DES.
Related Articles
User Access Review incorrect value for Rows/Page in RSA Identity Governance & Lifecycle Number of Views Oracle AFX connector message "DH Parameters without subprime Q are not FIPS 140 approved" in RSA Governance & Lifecycle Number of Views gpg: no valid OpenPGP data found. gpg: decrypt_message failed eof Number of Views Status of "Step 11: Verify account attributes synchronization" is always Not Started in SecurID Governance & Lifecycle Number of Views RSA Governance & Lifecycle - sap2csv: Export SAP Tables into csv files Number of Views
Trending Articles
RSA Authentication Manager 8.9 Release Notes (January 2026) RSA announces the availability of the RSA SecurID Hardware Appliance 230 based on the Dell PowerEdge R240 Server How to troubleshoot Oracle database ORA-04030 errors in RSA Identity Governance & Lifecycle RSA Authentication Manager Upgrade Process Microsoft SQL Server Collectors can no longer connect to the SQL Server database after upgrade to Microsoft SQL Server 201…
Don't see what you're looking for?
