Here's my situation. We've generated an SSL certificate from Thawte for a site we're hosting on EC2. We have our servers load balanced using Elastic Load Balancer.
Thawte gives us one PKCS signed certificate. When I go to the Amazon console to generate a new load balancer so that I can attach the certificate it requires 4 fields:
Certificate Name
Private Key
Public Key
Certificate Chain
Where I'm getting confused is that we only have the 1 certificate, yet the private & public keys are expected to be different.
What's the process to complete this?
Best Answer
-----BEGIN RSA PRIVATE KEY-----
to-----END RSA PRIVATE KEY-----
(inclusive).Public Key is the PEM encoded, based 64 verion of what obtained from Thawte (X.509). Copy the contents of the X.509 into a text editor (e.g. vi), save it with a .cer extension. Use OpenSSL to display it in the needed format:
Copy and paste the output from
-----BEGIN CERTIFICATE-----
to-----END CERTIFICATE-----
(inclusive) into the field.Check out this AWS thread for more information (although that is Verizon specific, the basic ideas apply).