Chapter 2 Basic AdministrationGenerating a Secure Certificate18 Application Gateway Administration GuideUnencrypting the Private KeyThe following procedure is not needed if you use the Cygwin UNIXenvironment to generate the CSR and private key. Follow this procedureonly if the method you use to generate the private key results in anencrypted key.To unencrypt the private key:1 At the $ prompt enter the command: openssl rsaIf you enter this command without arguments, you will be prompted asfollows:read RSA key2 Enter the name of the password to be encrypted.You can enter the openssl rsa command with arguments if you know thename of the private key and the unencrypted PEM file.For example, if the private key filename is my_keytag_key.pvk, and theunencrypted filename is keyout.pem, you would enter openssl rsa -inmy_keytag_key.pvk -out keyout.pem.For more information, refer to the following URL:http://www.openssl.org/docs/apps/rsa.html#EXAMPLESFor information on downloading OpenSSL for Windows, refer to thefollowing URL:http://sourceforge.net/project/showfiles.php?group_id=23617&release_id=48801Converting to a PEM-Formatted CertificateThe signed certificate file that you receive from your certificate providermight not be in a PEM format. If the file is in binary format (DER), convertit to PEM format as follows:openssl x509 -in certFile -inform DER -outform PEM -outconvertedCertFile