Dec 01, 2015 How to create self-certified SSL certificate and public/private key files. Iguana supports OpenSSL SSH-2 private keys and certificates in PEM format, these must not be password protected. I have the root certificate pem file from a Linux server. The application that needs to connect to that server is telling me it needs a publicCert pem file and a privateKey pem file to communicate with the server. My understanding is the root cert I currently have can then generate.
How do I convert my Amazon Elastic Compute Cloud (Amazon EC2) Privacy Enhanced Mail (.pem) file to a PuTTY Private Key (.ppk) file? Or, convert a .ppk file to a .pem file?
PuTTY doesn't natively support the private key format (.pem) generated by Amazon EC2. You must convert your private key into a .ppk file before you can connect to your instance using PuTTY. You can use the PuTTYgen tool for this conversion. This tool, available for both Windows and Unix operating system, can convert keys.
Windows - install PuTTYgen
Most Windows operating systems have PuTTY installed. If your system doesn't, download and install PuTTYgen.
Windows - convert a .pem file to a .ppk file
Start PuTTYgen, and then convert the .pem file to a .ppk file. For detailed steps, see Convert Your Private Key Using PuTTYgen.
Windows - convert a .ppk file to a .pem file
Unix or Linux - install PuTTY
Install PuTTY, if it's not already on your system.
Important: A PuTTY package is provided by the Extra Packages for Enterprise Linux (EPEL) repository. You must enable the EPEL repository before you install PuTTY.
To install PuTTY, run one of the following commands:
RPM-based
Dpkg-based
Unix or Linux - convert a .pem file to a .ppk file
On the instance shell, run the puttygen command to convert your .pem file to a .ppk file:
Crypto key generate rsa general keys modulus 2048.
Unix or Linux - convert a .ppk file to a .pem file
Run the puttygen command to convert a .ppk file into a .pem file:
Anything we could improve?
Need more help?
[ aws . ec2 ]
Creates a 2048-bit RSA key pair with the specified name. Amazon EC2 stores the public key and displays the private key for you to save to a file. The private key is returned as an unencrypted PEM encoded PKCS#1 private key. If a key with the specified name already exists, Amazon EC2 returns an error.
You can have up to five thousand key pairs per Region.
The key pair returned to you is available only in the Region in which you create it. If you prefer, you can create your own key pair using a third-party tool and upload it to any Region using ImportKeyPair .
For more information, see Key Pairs in the Amazon Elastic Compute Cloud User Guide .
See also: AWS API Documentation
See 'aws help' for descriptions of global parameters.
--key-name (string)
A unique name for the key pair.
Constraints: Up to 255 ASCII characters
--dry-run--no-dry-run (boolean)
--cli-input-json (string)Performs service operation based on the JSON string provided. The JSON string follows the format provided by --generate-cli-skeleton. If other arguments are provided on the command line, the CLI values will override the JSON-provided values. It is not possible to pass arbitrary binary values using a JSON-provided value as the string will be taken literally.
--generate-cli-skeleton (string)Prints a JSON skeleton to standard output without sending an API request. If provided with no value or the value input, prints a sample input JSON that can be used as an argument for --cli-input-json. If provided with the value output, it validates the command inputs and returns a sample output JSON for that command.
See 'aws help' for descriptions of global parameters.
To create a key pair
This example creates a key pair named MyKeyPair.
Command:
The output is an ASCII version of the private key and key fingerprint. You need to save the key to a file.
For more information, see Using Key Pairs in the AWS Command Line Interface User Guide.
KeyFingerprint -> (string)
KeyMaterial -> (string)
KeyName -> (string)
KeyPairId -> (string)