I've been working on getting OpenVPN Connect on my iPhone working with the OpenVPN Bridge contrib (
http://wiki.contribs.org/OpenVPN_Bridge), and have been encountering some issues. I've mostly managed to work around them (and intend to update the wiki), but one of them is giving me an issue.
When importing a .p12 file as an identity profile, iOS expects that it will be password protected. Whether or not the file is actually passworded, iOS requires a password and will not import it without one. This is, as far as I can tell, separate from having a password on the key itself. From what I can see, though, there's no way in PHPki to password-protect the downloaded .p12 file.
The only workaround I've seen is to download the PEM bundle, split it into the user key, user cert, and ca cert, and then use openssl at the command line to build a new .p12 file (which will require a password), which can then be imported into the iOS hardware keystore.