Generate Pem File From Key Pair
Generate Pem File From Key Pair 5,0/5 201 reviews

Dec 01, 2015  How to create self-certified SSL certificate and public/private key files. Iguana supports OpenSSL SSH-2 private keys and certificates in PEM format, these must not be password protected. I have the root certificate pem file from a Linux server. The application that needs to connect to that server is telling me it needs a publicCert pem file and a privateKey pem file to communicate with the server. My understanding is the root cert I currently have can then generate.

How do I convert my Amazon Elastic Compute Cloud (Amazon EC2) Privacy Enhanced Mail (.pem) file to a PuTTY Private Key (.ppk) file? Or, convert a .ppk file to a .pem file?

Short Description

Generate Pem File From Key Pair 1

PuTTY doesn't natively support the private key format (.pem) generated by Amazon EC2. You must convert your private key into a .ppk file before you can connect to your instance using PuTTY. You can use the PuTTYgen tool for this conversion. This tool, available for both Windows and Unix operating system, can convert keys.

Resolution

Windows - install PuTTYgen

Most Windows operating systems have PuTTY installed. If your system doesn't, download and install PuTTYgen.

Windows - convert a .pem file to a .ppk file

Start PuTTYgen, and then convert the .pem file to a .ppk file. For detailed steps, see Convert Your Private Key Using PuTTYgen.

Windows - convert a .ppk file to a .pem file

  1. Start PuTTYgen. For Actions, choose Load, and then navigate to your .ppk file.
  2. Choose the .ppk file, and then choose Open.
  3. (Optional) For Key passphrase, enter a passphrase. For Confirm passphrase, re-enter your passphrase.
    Note: Although a passphrase isn't required, you should specify one as a security measure to protect the private key from unauthorized use. Using a passphrase makes automation difficult, because human intervention is needed to log in to an instance or to copy files to an instance.
  4. From the menu at the top of the PuTTY Key Generator, choose Conversions, Export OpenSSH Key.
    Note: If you didn't enter a passphrase, you receive a PuTTYgen warning. Choose Yes.
  5. Name the file and add the .pem extension.
  6. Choose Save.

Unix or Linux - install PuTTY

Install PuTTY, if it's not already on your system.

Important: A PuTTY package is provided by the Extra Packages for Enterprise Linux (EPEL) repository. You must enable the EPEL repository before you install PuTTY.

To install PuTTY, run one of the following commands:

RPM-based

Generate Pem File From Key Pair

Dpkg-based

Unix or Linux - convert a .pem file to a .ppk file

On the instance shell, run the puttygen command to convert your .pem file to a .ppk file:
Crypto key generate rsa general keys modulus 2048.

Generate Pem File From Key Pair 1

Unix or Linux - convert a .ppk file to a .pem file

Run the puttygen command to convert a .ppk file into a .pem file:

Related Information

Anything we could improve?

Need more help?

Related Videos

Daniel shows you how to convert a private key to and from .ppk and .pem formats (3:48)

Generate Pem Key Pair

[ aws . ec2 ]

Description¶

Creates a 2048-bit RSA key pair with the specified name. Amazon EC2 stores the public key and displays the private key for you to save to a file. The private key is returned as an unencrypted PEM encoded PKCS#1 private key. If a key with the specified name already exists, Amazon EC2 returns an error.

You can have up to five thousand key pairs per Region.

The key pair returned to you is available only in the Region in which you create it. If you prefer, you can create your own key pair using a third-party tool and upload it to any Region using ImportKeyPair .

For more information, see Key Pairs in the Amazon Elastic Compute Cloud User Guide .

See also: AWS API Documentation

See 'aws help' for descriptions of global parameters.

Synopsis¶

Options¶

--key-name (string)

A unique name for the key pair.

Constraints: Up to 255 ASCII characters

--dry-run--no-dry-run (boolean)

Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation . Otherwise, it is UnauthorizedOperation .

--cli-input-json (string)Performs service operation based on the JSON string provided. The JSON string follows the format provided by --generate-cli-skeleton. If other arguments are provided on the command line, the CLI values will override the JSON-provided values. It is not possible to pass arbitrary binary values using a JSON-provided value as the string will be taken literally.

--generate-cli-skeleton (string)Prints a JSON skeleton to standard output without sending an API request. If provided with no value or the value input, prints a sample input JSON that can be used as an argument for --cli-input-json. If provided with the value output, it validates the command inputs and returns a sample output JSON for that command.

See 'aws help' for descriptions of global parameters.

Examples¶

To create a key pair

This example creates a key pair named MyKeyPair.

Command:

The output is an ASCII version of the private key and key fingerprint. You need to save the key to a file.

For more information, see Using Key Pairs in the AWS Command Line Interface User Guide.

Output¶

KeyFingerprint -> (string)

KeyMaterial -> (string)

An unencrypted PEM encoded RSA private key.

KeyName -> (string)

KeyPairId -> (string)

The ID of the key pair.