Certreq Command In Windows Server 2008
In this article I am going to explain about Certreq command in Windows Server 2008 operating system and also explain it's related syntax.
Introduction
Certreq command is Windows Server 2008 command line tool. Certreq command
applies to Windows Server 2008, Windows Vista
Certreq command is basically used for performing various certificate
authority( CA) certificate functions. Certreq command performs various functions
like requests certificate from certification authority, submit a request to CA,
creating new request from .inf file and retrieve the response of a previous
request from certification authority etc.
Syntax
Certreq [-submit] [-retrieve RequestID] [-new] [-accept] [-policy]
[-sign] [-attrib AttributeString] [-binary]
[-config CAMachineName\CAName] [-crl] [-rpc] [-cert CertID]
[RequestFileIn | CertChainFileIn | FullResponseFileIn | CertFileIn | PolicyFileIn]
[RequestFileOut | CertChainFileOut | FullResponseFileOut | CertFileOut | PKCS10FileOut]
|
Parameters
Parameters of Certreq |
Description |
-submit |
It submits the request to certification authority |
-retrieve RequestID |
Retrieve a response to previously requested from
CA |
-new |
Build new request from an .inf file |
-accept |
Accepts and installs a response to previous new request |
-policy |
Sets the policy for request |
-sign |
Signs a certificate request with qualified subordination signing
certificate |
-attrib AttributeString |
Denotes the string pairs of name and value. Name and value must
be seperated by colon |
-binary |
Formats output files as binary and not in the form of base64 |
-crl |
Includes certificate revocation lists in the output to the
base64-encoded PKCS #7 file or to the base 64 encoded file |
-cert CertID |
Denotes the signing certificate by common name, serial number
or
SHA-1, |
CertChainFileIn |
Denotes the certificate chain input file(base64-encoded or
binary) that you want to request |
FullResponseFileIn |
Denotes the full response input file(base64-encoded or binary) that
you want to request |
CertFileIn |
Denotes the certificate input file(base-64 encoded or binary) that
you want to request |
RequestFileIn |
Denotes the base64 encoded or binary certificate input file that you
want to request |
PolicyFileIn |
Specifies the .inf input file that contains |
RequestFileOut |
Denotes the file(base64 encoded) to which you want to send output |
PKCS10FileOut |
Denotes PKCS#10 file to which you want to send output. File must be
base64 encoded |
CertFileOut |
Specifies the X.509 v3 file to which you wand to send output |
CertChainFileOut |
Denotes the base64 encoded or binary PKCS #7 file to which you want
to send output |
FullResponseFileOutput |
Denotes full response file to which you want to send the output |
Lets see, how to use this command
Retrieve a response to previously requested from
CA
certreq -retrieve [-binary] [-config CAMachineName\CAName] [-crl]
[-rpc] RequestID [CertFileOut [PKCS10FileOut [FullResponseFileOut]]]
|
Ask Your
Question
Got a
programming related question? You may want to post your question here
Programming Answers here