Re: Can't accept a SSL certificate
- From: Nick Domukhovsky <ndomukhovsky@xxxxx>
- Date: Mon, 28 May 2007 10:05:35 +0600
I'm following KB321051 to enable LDAP over SSL on my Windows 2003 server. I
followed steps 1 and 2 to create the certificate request file. Then, I used
Certificate Services on my W2K3 system to create the certificate, using the
Certification Authority MMC snap-in. When I saw the certificate in 'Issued
Certificates', I selected 'Export Binary Data', and selected 'Binary
Certificate', and 'View formatted text version of data'. Sure enough, this
looks like a good certificate to me.
Step 5 of this procedure is 'certreq -accept certnew.cer'. When I execute
this command using the ASCII file produced by the export process, above, I
get the error: "The data is invalid 0x8007000d (WIN32: 13)". A note on step
4 says that the saved certificate must be encoded as base64. So I used
several base64 applications available over the web to encdoe the ASCII data.
When I feed the base64-encoded file to 'certreq -accept', I get: "ASN1 bad
tag value met. 0x8009310b (ASN: 267)".
What am I doing wrong?
Thanks
tl
Why don't you simply export base64 encoded certificate from your CA? It
will be simplest method...
--
With best regards
Nickolay Domukhovsky, MCSA
.
- Prev by Date: Re: Graft a root domain into an existing forest.
- Next by Date: Re: Graft a root domain into an existing forest.
- Previous by thread: Re: Decommissioning a domain controller
- Next by thread: Re: Programmatically lock down an account
- Index(es):
Relevant Pages
|
