Releasing an SSL certificate passphrase

System Administrator Guide for Virtual Storage Platform E Series

Part Number

An SSL certificate cannot be uploaded to the SVP if the passphrase is set. If the passphrase is set, use the following procedure to release the passphrase for the SSL certificate before applying it to the SVP.

  • The private key (server.key file) must have been created.
  • OpenSSL must be installed. In this procedure, it is installed in C:\openssl.
  • All users must be logged out of Device Manager - Storage Navigator.
  1. On the SVP, open a command prompt with administrator permissions.
  2. Move the current directory to the folder containing the key file (for example, C:\key).
  3. Execute the following command.
    Executing this command will overwrite the current key file. To prevent loss of the key file, either back up the key file before executing the following command, or specify a different key file input destination and output destination when executing the following command.

    When OpenSSL is installed:

    C:\key>c:\openssl\bin\openssl rsa -in key-file-input-destination -out key-file-output-destination

    When using OpenSSL on the SVP:

    C:\key>c:\Mapp\OSS\apache\bin\openssl rsa -in key-file-input-destination -out key-file-output-destination

    Note: C:\Mapp indicates the installation directory for the storage management software and SVP software. If you specified a different installation directory, replace C:\Mapp with the specified installation directory.
  4. When Enter pass phrase for server.key: is displayed, enter the passphrase.
    The passphrase in the SSL private key is released, and the SSL certificate can be applied to the SVP.

Example (when passphrase is set)

C:\key>c:\openssl\bin\openssl rsa -in server.key -out server.key
Enter pass phrase for server.key: "Enter passphrase"
Writing RSA key

Example (when passphrase is not set)

C:\key>c:\openssl\bin\openssl rsa -in server.key –out server.key
Writing RSA key