|
Posted by Sebastian Rieger on July 25, 2005, 9:44 pm
Please log in for more thread options Using the web enrollment pages you can simply supply the attribute in
the "Additional Attributes" text field. Just use:
CertificateTemplate: <template_name>
If you need it more regulary, you can extend the web enrollment pages,
like e.g. http://user-ca.mpg.de/request/certrqxt.asp?reqmode=1.
MfG
Sebastian Rieger
Dave Morrow schrieb:
> Thanks for the reply.
>
> I'll have to look into how to add the appropriate information to the CSR
> with OpenSSL. I've already tried using the web interface with the same
> results (no template).
>
>
>
>>Better use Web interface or certreq.exe to request the cert. I'm most
>>certain that the enterprise CA Web interface allows to select template for
>>a
>>request.
>>
>>If you'd like to have the whole lot done by OpenSSL - you can do that too.
>>As usually, documentation is largely missing and some assembly required
>>but
>>here's the deal:
>>
>>* You can add the template name to the request - it is an attribute with
>>OID
>>1.3.6.1.4.1.311.20.2
>>* Openssl allows to add optional attributes in the request configuration
>>file. See req man page for details.
>>
>>--
>>Svyatoslav Pidgorny, MS MVP - Security, MCSE
>>-= F1 is the key =-
>>
>>
>>
>>>I am attempting to sign an OpenSSL generated CSR with Microsoft
>>>Certification Authority.
>>>
>>>I generated the CSR using the instructions the instructions on the Apache
>>>website and successfully got the CSR. When I attempt to sign the CSR
>>>using
>>>Microsoft's Certificate Authority, I get the error "The request contains
>>
>>no
>>
>>>certificate template information."
>>>
>>>Does anyone know how to do this?
>>>
>>>
>>
>>
>
>
| 
XML Sitemap