That is correct. A P12 file, by definition includes the private key; and since your TPM does not allow the export of private keys, this option should be unavailable for certificates which have corresponding private keys.
All other formats in your list do not include private keys. Arshad Noor StrongAuth, Inc. Dave Pinn wrote:
I am perplexed by something: the export-to-file wizard in ProtectTools offers the user several file formats: DER encoded binary X.509 (.cer), Base-64 encoded X.509 (.cer), Cryptograhic Message Syntax Standard (.p7b), and PKCS#12 (.pfx). That last option, the PKCS#12 option, is always greyed out (unavailable); why? Might it be that .pfx requires that the private key be exported too?
_______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
