What format do I need the certificate in?

If you are providing certificate files to Trusted Knight, then the certificate and private key can be provided in either a single file or multiple files: 

  • If using a single file, this will usually have a “.pfx” or “.p12” extension (which is a PKCS#12 format) 
  • If using separate files, these are usually base64 encoded files, with extensions like “.cer”, “.crt”, “.pem”, or “.key”.  Regardless of the extension, these will be text files containing a string of characters with a prefix similar to “—–BEGIN RSA PRIVATE KEY—–” or “—–BEGIN CERTIFICATE—–“ 


Please also include the certificate chain – usually this is included by default. 


It is strongly recommended that the private keys be encrypted with a strong password, or else delivered over a secure channel.