Intermediate, Root, and Primary Certificates for SSL Installation

C.

When an SSL/TLS certificate is issued by a trusted Certificate Authority (CA), it typically consists of three files: the primary certificate, the intermediate certificate(s), and the root certificate. These certificates are used to establish a secure connection between a server and a client, typically a web browser.

To install the SSL/TLS certificate on the server, these three files need to be combined into a single file that the server can use. The file format used for this purpose depends on the server software being used.

The most common file formats for SSL/TLS certificates are PEM and DER. PEM (Privacy-Enhanced Mail) is a base64-encoded ASCII format that includes the certificate, private key, and any intermediate certificates. DER (Distinguished Encoding Rules) is a binary format that only includes the certificate itself, without any additional information.

In this case, the question is asking which type of file is created by combining the primary, intermediate, and root certificates. The correct answer is D. CRT (certificate) is a file extension that is commonly used to indicate a certificate file in Windows environments. This file format is typically used for SSL/TLS certificates on Windows-based servers, and it can include both the certificate and the private key.

Option A (DER) is incorrect because DER is a binary format that only includes the certificate itself, without any additional information. Option B (CSR) is incorrect because a CSR (Certificate Signing Request) is a file that is generated by the server that the SSL/TLS certificate will be installed on. It is used to request that a trusted CA issue a certificate for that server. Option C (PEM) is incorrect because PEM is an ASCII format that includes the certificate, private key, and any intermediate certificates, and is typically used for Unix-based servers.