Create a CSR using openSSH
Submit the CSR to your CA
Create a pfx file that includes your CRT and private KEY file