Certreq Command In Windows Server 2008

In this article I am going to explain about Certreq command in Windows Server 2008 operating system and also explain it's related syntax.
  • 3246

Introduction

Certreq command is Windows Server 2008 command line tool. Certreq command applies to  Windows Server 2008, Windows Vista

Certreq command is basically used for performing various certificate authority( CA) certificate functions. Certreq command performs various functions like requests certificate from certification authority, submit a request to  CA, creating new request from .inf file and retrieve the response of a previous request from certification authority etc.

Syntax

Certreq [-submit] [-retrieve RequestID] [-new] [-accept] [-policy]
[-sign] [-attrib AttributeString] [-binary]
[-config CAMachineName\CAName] [-crl] [-rpc] [-cert CertID]
[RequestFileIn | CertChainFileIn | FullResponseFileIn | CertFileIn | PolicyFileIn]
[RequestFileOut | CertChainFileOut | FullResponseFileOut | CertFileOut | PKCS10FileOut]

Parameters

Parameters of Certreq  Description
 -submit It submits the request to certification authority
 -retrieve RequestID Retrieve a response to previously requested from CA
 -new Build new request from an .inf file
 -accept Accepts and installs a response to previous new request
 -policy Sets the policy for request  
 -sign Signs a certificate request with qualified subordination signing certificate 
 -attrib AttributeString Denotes the string pairs of name and value. Name and value must be seperated by colon 
 -binary Formats output files as binary and  not in the form of base64
 -crl Includes certificate revocation lists in the output to the base64-encoded PKCS #7 file or to the base 64 encoded file 
 -cert CertID Denotes the signing certificate by common name, serial number or SHA-1, 
 CertChainFileIn Denotes the certificate chain input file(base64-encoded or binary) that you want to request
 FullResponseFileIn Denotes the full response input file(base64-encoded or binary) that you want to request
 CertFileIn Denotes the certificate input file(base-64 encoded or binary) that you want to request
RequestFileIn  Denotes the base64 encoded or binary certificate input file that you want to request
 PolicyFileIn Specifies the .inf  input file that contains
 RequestFileOut Denotes the file(base64 encoded) to which you want to send output
 PKCS10FileOut Denotes PKCS#10 file to which you want to send output. File must be base64 encoded
 CertFileOut Specifies the X.509 v3 file to which you wand to send output 
 CertChainFileOut Denotes the base64 encoded or binary PKCS #7 file to which you want to send output  
 FullResponseFileOutput Denotes full response file to which you want to send the output 

Lets see, how to use this command

Retrieve a response to previously requested from CA

certreq -retrieve [-binary] [-config CAMachineName\CAName] [-crl]
[-rpc] RequestID [CertFileOut [PKCS10FileOut [FullResponseFileOut]]]

Ask Your Question 

Got a programming related question? You may want to post your question here

Programming Answers here

Categories

More Articles

© 2018 DotNetHeaven. All rights reserved.