News
Knowledgebase
CSR Generation: Using certreq (Windows)

This article is for administrators who prefer the command shell!



Save the following file as request.inf on your server editing the subject according to the comment:

;----------------- request.inf -----------------

[Version]
Signature="$Windows NT$"

[NewRequest]
Subject = "C=US, CN=something.example.com"

KeySpec = 1
KeyLength = 2048
Exportable = TRUE
MachineKeySet = TRUE
SMIME = False
PrivateKeyArchive = FALSE
UserProtected = FALSE
UseExistingKeySet = FALSE
ProviderName = "Microsoft RSA SChannel Cryptographic Provider"
ProviderType = 12
RequestType = PKCS10
KeyUsage = 0xa0
HashAlgorithm = SHA256 

[EnhancedKeyUsageExtension]
OID=1.3.6.1.5.5.7.3.1 ; this is for Server Authentication / Token Signing
;-----------------------------------------------


then run

C:\>certreq -new request.inf request.csr



Related Articles

 

 

 



31337


Comments (1)
Namecheap Support
December 23 2016 03:49
According to https://technet.microsoft.com/en-us/library/dn296456(v=ws.11).aspx 'HashingAlgorithm' key does not exist. But there is 'HashAlgorithm' parameter though. Please correct the parameter name in the article.
Help Desk Software by Kayako
© 2018 Comodo Security Solutions, Inc. All rights reserved.