A.pem file is a container format that may just include the public certificate or the entire certificate chain (private key, public key, root certificates): Private Key; Server Certificate (crt, puplic key) (optional) Intermediate CA and/or bundles if signed by a 3rd party; How to create a self-signed PEM file. Jan 25, 2016 Create PEM file for your Linux server. 3- Let’s keep the private key as it is and create a new pem file from it: openssl rsa -in trb -outform pem trb.pem. Save the combined file as yourdomainname.pem. The.pem file is now ready to use. Creating a.pem with the Private Key and Entire Trust Chain. Log into your DigiCert Management Console and download your Intermediate (DigiCertCA.crt) and Primary Certificates (yourdomainname.crt). Save the combined file as yourdomainname.pem. The.pem file is now ready to use. How to Create a.pem file with the Private Key and Entire Trust Chain. Login into your SSL Certificate Management Console and download your Intermediate (YourCA.crt) and Primary Certificates (yourdomainname.crt).
SSL .pem files (concatenated certificate container files), are frequently required for certificate installations when multiple certificates are being imported as one file.
This article contains multiple sets of instructions that walk through various .pem file creation scenarios.
Creating a .pem with the Entire SSL Certificate Trust Chain
Open a text editor (such as wordpad) and paste the entire body of each certificate into one text file in the following order:
Make sure to include the beginning and end tags on each certificate. The result should look like this:
-----BEGIN CERTIFICATE-----
(Your Primary SSL certificate: your_domain_name.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Intermediate certificate: DigiCertCA.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Root certificate: TrustedRoot.crt)
-----END CERTIFICATE-----
Save the combined file as your_domain_name.pem. The .pem file is now ready to use.
Creating a .pem with the Server and Intermediate Certificates
Open a text editor (such as wordpad) and paste the entire body of each certificate into one text file in the following order:
Make sure to include the beginning and end tags on each certificate. The result should look like this:
-----BEGIN CERTIFICATE-----
(Your Primary SSL certificate: your_domain_name.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Intermediate certificate: DigiCertCA.crt)
-----END CERTIFICATE-----
Save the combined file as your_domain_name.pem. The .pem file is now ready to use.
Creating a .pem with the Private Key and Entire Trust Chain
Open a text editor (such as wordpad) and paste the entire body of each certificate into one text file in the following order:
Make sure to include the beginning and end tags on each certificate. The result should look like this:
-----BEGIN RSA PRIVATE KEY-----
(Your Private Key: your_domain_name.key)
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
(Your Primary SSL certificate: your_domain_name.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Intermediate certificate: DigiCertCA.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Root certificate: TrustedRoot.crt)
-----END CERTIFICATE-----
Save the combined file as your_domain_name.pem. The .pem file is now ready to use.
How do I convert my Amazon Elastic Compute Cloud (Amazon EC2) Privacy Enhanced Mail (.pem) file to a PuTTY Private Key (.ppk) file? Or, convert a .ppk file to a .pem file?
PuTTY doesn't natively support the private key format (.pem) generated by Amazon EC2. You must convert your private key into a .ppk file before you can connect to your instance using PuTTY. You can use the PuTTYgen tool for this conversion. This tool, available for both Windows and Unix operating system, can convert keys.
Windows - install PuTTYgen
Most Windows operating systems have PuTTY installed. If your system doesn't, download and install PuTTYgen.
Windows - convert a .pem file to a .ppk file
Start PuTTYgen, and then convert the .pem file to a .ppk file. For detailed steps, see Convert Your Private Key Using PuTTYgen.
Windows - convert a .ppk file to a .pem file
Unix or Linux - install PuTTY
Install PuTTY, if it's not already on your system.
Important: A PuTTY package is provided by the Extra Packages for Enterprise Linux (EPEL) repository. You must enable the EPEL repository before you install PuTTY.
To install PuTTY, run one of the following commands:
RPM-based
Dpkg-based
Unix or Linux - convert a .pem file to a .ppk file
On the instance shell, run the puttygen command to convert your .pem file to a .ppk file:
Unix or Linux - convert a .ppk file to a .pem file
Run the puttygen command to convert a .ppk file into a .pem file:
Anything we could improve?
Need more help?