To generate FIPS compliant pkcs12 file using Openssl
Originally Published: 2009-12-07
Article Number
Issue
In FIPS mode, when importing pkcs12 file created using openssl (with default options), R_PKCS12_DECODE returns error 10009 : NOT_AVAILABLE.
Cause
Resolution
openssl pkcs12 -export -in <your server cert>.pem -inkey <your server key>.pem -out mycert.p12 -descert
The -descert option will instruct openssl to encrypt pkcs12 certificates with triple DES.
Related Articles
RSA Governance & Lifecycle - sap2csv: Export SAP Tables into csv files Number of Views User Groups and Token Bulk Requests Utility Number of Views CSV Format for Token Requests Input File Number of Views gpg: no valid OpenPGP data found. gpg: decrypt_message failed eof Number of Views User Access Review incorrect value for Rows/Page in RSA Identity Governance & Lifecycle Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Release Notes for RSA Authentication Manager 8.8 RSA Authentication Manager 8.9 Release Notes (January 2026) Deploying RSA Authenticator 6.2.2 for Windows Using DISM RSA MFA Agent 2.4 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
