search cancel

How to verify TLS/SSL certificates match

book

Article ID: 42466

calendar_today

Updated On:

Products

CA eHealth

Issue/Introduction

Summary: 

If eHealth is configured to use SSL the public/private keys must match.

Environment:  

eHealth all platforms
Configured to use TLS/SSL

Instructions: 

1) Commands to verify a server key matches the certificate:

Public Key: 

openssl x509 -noout -modulus -in <certificateFile> | openssl md5

Private Key:

openssl rsa -noout -modulus -in  <server privateKey>  | openssl md5


    The resulting numbers must match. If not they do not belong to each other.

 

2) You can also verify a certificate signing request matches the certificate and/or private key:

openssl req -noout -modulus -in <certificateSigningRequestFile> | openssl md5


    The resulting number would need to match the output(s) in step 1)

 

 

Environment

Release: LHDEVC99000-6.3-eHealth-Live Health Upgrade Elements
Component: