Certreq Command In Windows Server 2008
In this article I am going to explain about Certreq command in Windows Server 2008 operating system and also explain it's related syntax.
Introduction
Certreq command is Windows Server 2008 command line tool. Certreq command applies to Windows Server 2008, Windows Vista
Certreq command is basically used for performing various certificate authority( CA) certificate functions. Certreq command performs various functions like requests certificate from certification authority, submit a request to CA, creating new request from .inf file and retrieve the response of a previous request from certification authority etc.
Syntax
Certreq [-submit] [-retrieve RequestID] [-new] [-accept] [-policy]
[-sign] [-attrib AttributeString] [-binary]
[-config CAMachineName\CAName] [-crl] [-rpc] [-cert CertID]
[RequestFileIn | CertChainFileIn | FullResponseFileIn | CertFileIn | PolicyFileIn]
[RequestFileOut | CertChainFileOut | FullResponseFileOut | CertFileOut | PKCS10FileOut]
|
Parameters
| Parameters of Certreq |
Description |
| -submit |
It submits the request to certification authority |
| -retrieve RequestID |
Retrieve a response to previously requested from CA |
| -new |
Build new request from an .inf file |
| -accept |
Accepts and installs a response to previous new request |
| -policy |
Sets the policy for request |
| -sign |
Signs a certificate request with qualified subordination signing certificate |
| -attrib AttributeString |
Denotes the string pairs of name and value. Name and value must be seperated by colon |
| -binary |
Formats output files as binary and not in the form of base64 |
| -crl |
Includes certificate revocation lists in the output to the base64-encoded PKCS #7 file or to the base 64 encoded file |
| -cert CertID |
Denotes the signing certificate by common name, serial number or SHA-1, |
| CertChainFileIn |
Denotes the certificate chain input file(base64-encoded or binary) that you want to request |
| FullResponseFileIn |
Denotes the full response input file(base64-encoded or binary) that you want to request |
| CertFileIn |
Denotes the certificate input file(base-64 encoded or binary) that you want to request |
| RequestFileIn |
Denotes the base64 encoded or binary certificate input file that you want to request |
| PolicyFileIn |
Specifies the .inf input file that contains |
| RequestFileOut |
Denotes the file(base64 encoded) to which you want to send output |
| PKCS10FileOut |
Denotes PKCS#10 file to which you want to send output. File must be base64 encoded |
| CertFileOut |
Specifies the X.509 v3 file to which you wand to send output |
| CertChainFileOut |
Denotes the base64 encoded or binary PKCS #7 file to which you want to send output |
| FullResponseFileOutput |
Denotes full response file to which you want to send the output |
Lets see, how to use this command
Retrieve a response to previously requested from CA
certreq -retrieve [-binary] [-config CAMachineName\CAName] [-crl]
[-rpc] RequestID [CertFileOut [PKCS10FileOut [FullResponseFileOut]]]
|
Ask Your Question
Got a programming related question? You may want to post your question here
Programming Answers here