Newbie: Learning how to setup AD SSL w2003DC - certreq error
- From: "fabster" <fabster01@xxxxxxxxx>
- Date: 21 Jun 2005 20:06:41 -0700
Hi All,
A newbie here. Have been looking at the knowledgebase from Microsoft
on:
"How to enable LDAP over SSL with a third-party certification
authority"
http://support.microsoft.com/default.aspx?scid=kb;en-us;321051
I copy the entire request.inf and modify the fqdn and paste into a new
file:
----------------- request.inf ----------------- [Version]
Signature="$Windows NT$ [NewRequest] Subject =
"CN=nbfabster.mydomain.com" ; replace with the FQDN of the DC KeySpec =
1 KeyLength = 1024 ; Can be 1024, 2048, 4096, 8192, or 16384. ; Larger
key sizes are more secure, but have ; a greater impact on performance.
Exportable = TRUE MachineKeySet = TRUE SMIME = False PrivateKeyArchive
= FALSE UserProtected = FALSE UseExistingKeySet = FALSE ProviderName =
"Microsoft RSA SChannel Cryptographic Provider" ProviderType = 12
RequestType = PKCS10 KeyUsage = 0xa0 [EnhancedKeyUsageExtension]
OID=1.3.6.1.5.5.7.3.1 ; this is for Server Authentication
-----------------------------------------------
Q1. Is this supposed to be the content of the request.inf? Because when
I run certreq I get an error. I did not do anything else besides
reading this doc. The error is:
C:\WUTemp>certreq -new request.inf request.req
Certificate Request Processor: Expected INF file section name
0xe0000000 (INF: -536870912)
request.inf
Q2. Do I need to setup anything or is this reference correct? assuming
a newbie like me will be able to follow???
Please help.
.
- Follow-Ups:
- Prev by Date: About DHCP Administrator group--Fyi Paul Williams
- Next by Date: Re: Why No OUs Under User Group?
- Previous by thread: About DHCP Administrator group--Fyi Paul Williams
- Next by thread: Re: Newbie: Learning how to setup AD SSL w2003DC - certreq error
- Index(es):
Relevant Pages
|
