Using Security Certificates |
Users use several server-types to generate certificates with the following extensions der,.pem,.crt,.cer, .pkcs7,.p7b,.pkcs8,.pkcs12,.pfx,.p12, and so on.
Vocera supports pem (Privacy Enhanced Mail) files, and to support other certificate formats, such as DER, PFX, and P12 that are not supported by the device, convert the files to PEM files. Privacy-Enhanced Mail (PEM) is a file format for storing and sending cryptographic keys, certificates, and other data, based on a set of 1993 IETF standards defining "privacy-enhanced mail."
You can convert client certificate to PEM format using OpenSSL commands and copy the required files to the badge. For B3000n external certificates path is /g2/badge/res/certificates/EAP-TLS. For V5000 external certificates path is /g5/badge/data/res/certificates/EAP-TLS.
For more information, refer to http://www.openssl.org/.
Use the following command to convert a pfx file to a pem file
openssl pkcs12 -in "<location\name.pfx>" -out " <filelocation\name.pem>" -nodes
Use the following command to generate pem key file from pfx
openssl pkcs12 -in "<location\name.pfx>" -nocerts -nodes -out <lfileocation\namekey>.pem"
Use the following command to generate pem key file from cer
openssl x509 -inform DER -in "<location\name\rootca.cer" -out "<filelocation\<nameca>.pem"