Certificate tools
The Certificate tools system service can be used to perform the following operations:
- Convert certificate file format
- Extract certificate subject and issuer information
- Generate a Certificate Signing Request (CSR) and corresponding public/private key pair
- Generate a CA signed certificate and corresponding public/private key pair
- Generate a self-signed certificate and corresponding public/private key pair
- Sign an existing Certificate Signing Request (CSR)
You can download this system service from Grexx Marketplace.
Input
Use a casetype activity to add inputs to the relevant certificate form, according to the operation you want to perform.
Convert a certificate file format
| Attribute | Data type | Mandatory? | Description |
|---|---|---|---|
| Certificate | File | Yes | The certificate file that you want to convert. The following formats are currently supported: pem, der, pfx, p12. |
| Output format | String | Yes | The desired output format. |
| Password | String | No | The password used for the signing key. |
| Private key | File | No | The private key of the certificate, in case you want to convert to p12. |
Extract certificate subject and issuer information
| Attribute | Data type | Mandatory? | Description |
|---|---|---|---|
| Certificate | File | Yes | The certificate file that you want to extract information from. |
Generate a Certificate Signing Request
| Attribute | Data type | Mandatory? | Description |
|---|---|---|---|
| Encryption type | String | Yes | The encryption algorithm. Supported values: RSA or EC (Elliptic Curve). |
| RSA modulus length | Integer | No | Only needed when using RSA encryption type. The bit length of the RSA modulus used in the certificate, indicating the strength of the encryption key. |
| Password | String | No | The password used for the signing key. |
| Valid until | Datetime | Yes | The date and time until which the certificate is valid. |
| Valid from | Datetime | Yes | The date and time from which the certificate is valid. |
| Country name (Subject) | String | Yes | The country name specified in the certificate subject. |
| Common name (Subject) | String | Yes | The common name specified in the certificate subject. |
| Email address (Subject) | String | Yes | The email address specified in the certificate subject. |
| Locality name (Subject) | String | Yes | The locality (e.g., city) specified in the certificate subject. |
| Organization name (Subject) | String | Yes | The organization name specified in the certificate subject. |
| Organizational unit (Subject) | String | Yes | The organizational unit name specified in the certificate subject. |
| State (Subject) | String | Yes | The state specified in the certificate subject. |
Generate a self-signed certificate and key pair
| Attribute | Data type | Mandatory? | Description |
|---|---|---|---|
| Encryption type | String | Yes | The encryption algorithm. Supported values: RSA or EC (Elliptic Curve). |
| RSA modulus length | Integer | No | Only needed when using RSA encryption type. The bit length of the RSA modulus used in the certificate, indicating the strength of the encryption key. |
| Password | String | No | The password used for the signing key. |
| Valid until | Datetime | Yes | The date and time until which the certificate is valid. |
| Valid from | Datetime | Yes | The date and time from which the certificate is valid. |
| Country name (Subject) | String | Yes | The country name specified in the certificate subject. |
| Common name (Subject) | String | Yes | The common name specified in the certificate subject. |
| Email address (Subject) | String | Yes | The email address specified in the certificate subject. |
| Locality name (Subject) | String | Yes | The locality (e.g., city) specified in the certificate subject. |
| Organization name (Subject) | String | Yes | The organization name specified in the certificate subject. |
| Organizational unit (Subject) | String | Yes | The organizational unit name specified in the certificate subject. |
| State (Subject) | String | Yes | The state specified in the certificate subject. |
Generate a CA signed certificate and key pair
| Attribute | Data type | Mandatory? | Description |
|---|---|---|---|
| Root CA Certificate | File | Yes | The root certificate authority (CA) certificate file to be used. |
| Root CA private key | File | Yes | The private key corresponding to the root CA certificate. |
| Encryption type | String | Yes | The encryption algorithm. Supported values: RSA or EC (Elliptic Curve). |
| RSA modulus length | Integer | No | Only needed when using RSA encryption type. The bit length of the RSA modulus used in the certificate, indicating the strength of the encryption key. |
| Password | String | No | The password used for the signing key. |
| Valid until | Datetime | Yes | The date and time until which the certificate is valid. |
| Valid from | Datetime | Yes | The date and time from which the certificate is valid. |
| Country name (Subject) | String | Yes | The country name specified in the certificate subject. |
| Common name (Subject) | String | Yes | The common name specified in the certificate subject. |
| Email address (Subject) | String | Yes | The email address specified in the certificate subject. |
| Locality name (Subject) | String | Yes | The locality (e.g., city) specified in the certificate subject. |
| Organization name (Subject) | String | Yes | The organization name specified in the certificate subject. |
| Organizational unit (Subject) | String | Yes | The organizational unit name specified in the certificate subject. |
| State (Subject) | String | Yes | The state specified in the certificate subject. |
Sign an existing Certificate Signing Request
| Attribute | Data type | Mandatory? | Description |
|---|---|---|---|
| Root CA Certificate | File | Yes | The root certificate authority (CA) certificate file to be used. |
| Root CA private key | File | Yes | The private key corresponding to the root CA certificate. |
| Certificate Signing Request (CSR) | File | Yes | The CSR file you want to sign. |
| Valid until | Datetime | Yes | The date and time until which the certificate is valid. |
| Valid from | Datetime | Yes | The date and time from which the certificate is valid. |
Output
All operations use the same result form. Outputs are added to the Result Certificate form when the relevant certificate case is closed.
| Attribute | Data type | Mandatory? | Description |
|---|---|---|---|
| Certificate | File | No | The root certificate authority (CA) certificate file to be used. |
| Certificate serial number | File | No | The private key corresponding to the root CA certificate. |
| Encryption type | String | No | The encryption algorithm. Supported values: RSA or EC (Elliptic Curve). |
| Country name (Issuer) | String | No | The country name specified in the certificate issuer. |
| Common name (Issuer) | String | No | The common name specified in the certificate issuer. |
| Email address (Issuer) | String | No | The email address specified in the certificate issuer. |
| Locality name (Issuer) | String | No | The locality (e.g., city) specified in the certificate issuer. |
| Organization name (Issuer) | String | No | The organization name specified in the certificate issuer. |
| Organizational unit (Issuer) | String | No | The organizational unit name specified in the certificate issuer. |
| State (Issuer) | String | No | The state specified in the certificate issuer. |
| Valid until | Datetime | No | The date and time until which the certificate is valid. |
| Valid from | Datetime | No | The date and time from which the certificate is valid. |
| Country name (Subject) | String | No | The country name specified in the certificate subject. |
| Common name (Subject) | String | No | The common name specified in the certificate subject. |
| Email address (Subject) | String | No | The email address specified in the certificate subject. |
| Locality name (Subject) | String | No | The locality (e.g., city) specified in the certificate subject. |
| Organization name (Subject) | String | No | The organization name specified in the certificate subject. |
| Organizational unit (Subject) | String | No | The organizational unit name specified in the certificate subject. |
| State (Subject) | String | No | The state specified in the certificate subject. |