As QRadar needs both public and private key to be in clear-text format, you should follow the steps below to extract the keys from a pfx file:
1. The following command exports the private key and saves it in “key.pem”.
# openssl pkcs12 -in filename.pfx -nocerts -out key.pem
2. The following command exports the public key and saves it in “cert.pem”.
# openssl pkcs12 -in filename.pfx -clcerts -nokeys -out cert.pem
3. The following command removes the passphrase from the private key.
# openssl rsa -in key.pem -out server.key
Once these steps are done, “server.key” can be imported in QRadar as a private key, and “cert.pem” can be used as the public key.
