How to Remove a Passphrase from Certificate Key

0 min read 116 words

If you have a Certificate Key that includes a Passphrase and you need to remove it, potentially to use it with AWS App Mesh, then you can do the following:

How to Remove a Passphrase using OpenSSL

  1. Locate the Private Key
  2. Run the following command:
    open ssl rsa -in <original.key> -out <new.key>
  3. Enter the original passphrase for the existing key
  4. The output file <new.key> will now be unencrypted

How to Verify if the Passphrase has been removed

Open the file in a text editor and check the headers.

Encrypted headers example

-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED DEK-Info: DES-EDE3-CBC,

ABC407785DD18XXX...
-----END RSA PRIVATE KEY-----

Unencrypted headers example

-----BEGIN RSA PRIVATE KEY-----
ABC407785DD18XXX...
-----END RSA PRIVATE KEY-----
Tags:
Andrew
Andrew

Andrew is a visionary software engineer and DevOps expert with a proven track record of delivering cutting-edge solutions that drive innovation at Ataiva.com. As a leader on numerous high-profile projects, Andrew brings his exceptional technical expertise and collaborative leadership skills to the table, fostering a culture of agility and excellence within the team. With a passion for architecting scalable systems, automating workflows, and empowering teams, Andrew is a sought-after authority in the field of software development and DevOps.

Tags

Recent Posts