Click here to get back home

certificate validity in Certificates MMC snap-in
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
certificate validity in Certificates MMC snap-in Ondrej Sevecek 10-04-2005
Posted by Ondrej Sevecek on October 4, 2005, 4:27 pm
Please log in for more thread options
 Hello,

I have tried it, but the certificates.MMC snap-in does not check for
revocation information nor for the fact the root CA certificate have to be
in "trusted root"s.

how to make the snap-in do the work or is there a simple utility that would
provide me with exact error codes for the certification validity checks?

O.




Posted by Brian Komar [MVP] on October 5, 2005, 7:16 am
Please log in for more thread options
 <ondra at my_surname dot com> says...
> Hello,
>
> I have tried it, but the certificates.MMC snap-in does not check for
> revocation information nor for the fact the root CA certificate have to be
> in "trusted root"s.
>
> how to make the snap-in do the work or is there a simple utility that would
> provide me with exact error codes for the certification validity checks?
>
> O.
>
>
>
The MMC consoles do not invoke the calls to check revocation on a
certificate. This is left up to the application that is validating the
certificate.

The easiest way is to use a computer running Windows XP or Windows
Server 2003 with the Administration Pack installed. You can then run:

certutil -verify -urlfetch <certificateFile.cer>

Just export the certificate from the MMC to a base64 or der format file.

Brian


Posted by Ondrej Sevecek on October 6, 2005, 12:58 am
Please log in for more thread options
absolutely the answer. thanks.

O.

> <ondra at my_surname dot com> says...
>> Hello,
>>
>> I have tried it, but the certificates.MMC snap-in does not check for
>> revocation information nor for the fact the root CA certificate have to
>> be
>> in "trusted root"s.
>>
>> how to make the snap-in do the work or is there a simple utility that
>> would
>> provide me with exact error codes for the certification validity checks?
>>
>> O.
>>
>>
>>
> The MMC consoles do not invoke the calls to check revocation on a
> certificate. This is left up to the application that is validating the
> certificate.
>
> The easiest way is to use a computer running Windows XP or Windows
> Server 2003 with the Administration Pack installed. You can then run:
>
> certutil -verify -urlfetch <certificateFile.cer>
>
> Just export the certificate from the MMC to a base64 or der format file.
>
> Brian




Similar ThreadsPosted
Request Cert via certificates MMC snapin with CA in parent domain December 6, 2006, 10:44 am
ca - certificate validity question November 8, 2008, 5:32 am
utility to check certificate validity October 5, 2005, 8:51 am
Extend certificate validity time on Windows Standard CA November 14, 2008, 4:08 am
Certificates April 5, 2007, 5:38 pm
two CA certificates for IPSec or something... September 17, 2005, 3:58 pm
Certificates are not published October 17, 2005, 3:31 pm
Certificates 802.1X Auth. November 21, 2005, 11:07 am
Removing CA certificates. December 22, 2005, 3:50 pm
Need some information about certificates March 9, 2006, 5:54 pm

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap