See if the MS-certutil version gives you an option to convert your private-key and certificate to a PKCS#12 file (PFX). If it does, then do so and then you can import the P12 file into the Mozilla keystore with Mozilla-certutil.
Arshad Noor StrongAuth, Inc. kcsasquatch wrote:
Hi, I have a MS Authenticode code signing cert from Verisign that I use to sign executables on Windows. I would also like to use this to generated signed .jar files for use with the firefox browser. I am currently facing the roadblock that signtool (v 3.11.2) expects the cert and its private key to be found in the certificate database, but I haven't been able to figure out how to import my existing private key into this database. I have these two files: - mycert.pvk (private key generated using microsoft certutil) - mycert.cer (certificate issued by Verisign) I want to import the cert and private key into a cert database named "mycertdb" so that I can run signtool as follows: % signtool -n"mycert" -d"mycertdb" -Z"html.jar" -p"passwd" html/ (assuming I want to sign a directory of html and javascript called 'html') I have successfully imported mycert.cer into the database using this command: % certutil -A -n"mycert" -d"mycertdb" -t",,C" -i mycert.cer But even after doing this, when I run the signtool command above, I get the error "cannot find private key". Is what I'm trying to do even possible, or do I need to generate a new certificate request using certutil and get (and pay for) a new certificate from Verisign? Thanks in advance! Kevin _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
_______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
