OpenSSL "pkey -aes*" - Re-Encrypt RSA Keys

Q

How to re-encrypt an RSA key file using OpenSSL "pkey" command? I want to change the encryption password, and maybe change the encryption algorithm.

✍: FYIcenter.com

A

If you want to encrypt an existing RSA key file again, you can use the "pkey -aes*" command as shown below:

C:\Users\fyicenter>\local\openssl\openssl

OpenSSL> pkey -in my_rsa_des.key -aes128 -out my_rsa_aes.key
Enter pass phrase for my_rsa_des.key: fyicenter
Enter PEM pass phrase: fyicenter.com
Verifying - Enter PEM pass phrase: fyicenter.com

Options used in this command are:

  • "-in my_rsa_des.key" - Read the RSA private key file.
  • "-out my_rsa_aea.key" - Save the output to a file.
  • "-aes128" - Encrypt the output (RSA private key and public key).
  • "fyicenter" - The password of the input key file.
  • "fyicenter.com" - The password of the output key file.

 

OpenSSL "genpkey" Command for DSA Keys

OpenSSL "pkey" - Open Encrypted RSA Keys

OpenSSL "genpkey" Command for RSA Keys

⇑⇑ OpenSSL Tutorials

2017-09-12, 2081🔥, 0💬