My current conjur certificates are due for rotation. Just wondering if anybody has documentation on how to extract the CA chain, public certificate and RSA key from a third party CA in PFX format. The CyberArk Conjur online documentation only describes how to import these files to conjur and does not provide information on how to generate the files. I appreciate any help!
You cannot extract certificate and key from Third party CA. Instead your CA will issue the certificate for you based on the CSR you would submit.
You create a private key using which create a CSR. CSR may contain the domain names of your cluster and cluster nodes.
For more info, you can check certificate requirements in Cyberark documentation.