How to get your Certificate and Private Key file from a PFX file

How to get your Certificate and Private Key file from a PFX file

The filename extensions for PKCS #12 are *.PFX or *.P12 and both are the most common bundles of  X.509  certificates (sometimes with the full chain of trust) and private key.

I always need to look at the man page of OpenSSL or review my bash history to use the right options to extract a certificate file and a key file from it.

For this reason, I’ve created a small bash script to complete this step for me.

Continue reading “How to get your Certificate and Private Key file from a PFX file”

Workaround ADFS errors when using certificates with CNG Keys

workaround-adfs-errors-when-using-certificates-with-cng-keys

I can describe ADFS (Active Directory Federation Services) as the de-facto standard service to extend Active Directory as an Identity provider to inside or outside the organisation in order to achieve the Single-Sign-On (SSO) experience and Security that modern systems/users needs and expects.

The first version of ADFS was an additional download of Windows 2003 R2, but started to get popular and used as a service in Windows Server 2008/2008 R2.

Microsoft Azure AD Connect with Azure AD or products offered by Okta or  Auth0 (just to name a few) started to make of ADFS federation redundant in the past 3-4 years, but a lot of functionalities have been added in the last version of ADFS with Windows  Server 2019 which made it still relevant.

In my humble opinion, ADFS is not dead yet! Continue reading “Workaround ADFS errors when using certificates with CNG Keys”