Questions tagged [certenroll]

Certificate enrollment policy provides the locations of certification authorities (CAs) and the types of certificates that can be requested.

Organizations that are using Active Directory Domain Services (AD DS) can use Group Policy to provide certificate enrollment policy to domain members by using the Group Policy Management Console to configure the certificate enrollment policy settings. The Certificates snap-in can be used to configure certificate enrollment policy settings for individual client computers unless the Group Policy setting is configured to disable user-configured enrollment policy. Use the following procedures to configure certificate enrollment policy settings: Manage Certificate Enrollment Policy by Using Group Policy

Manage Certificate Enrollment Policy by Using the Certificates Snap-in

Reference.

58 questions

votes

1 answer

supply public key in CERTENROLL request

I want to request a cert (from AD cert server) using a template. I want to supply the public key in the request. Using msft's SDK sample IX509CertificateRequest iRequest = objEnroll.Request; // then get the inner PKCS10 request …

x509 certenroll

asked Apr 22 '11 at 02:30

pm100

48,078
23
82
145

votes

1 answer

(WIN32: 1400 ERROR_INVALID_WINDOW_HANDLE) while Signing a CSR with a SmartCard

I am trying to generate a CSR from a smartcard using the CertEnroll::CX509CertificateRequestPkcs10 library. It works fine if I just run it at the beginning. However if I run the ADAL login flow before hand I get the following error.…

c# certificate smartcard certenroll

asked May 16 '19 at 22:08

Igal Flegmann

votes

3 answers

How do I add a challengePassword to a PKCS10 certificate request using IE11 and certenroll?

I am using Certenroll in Internet Explorer 11 to create a PKCS10 certificate sign request to send to a certificate authority. I need to add the challengePassword attribute (OID 1.2.840.113549.1.9.7) to the generated CSR, and I am struggling to nail…

javascript internet-explorer certenroll

asked Apr 03 '19 at 23:56

Graham Leggett

votes

0 answers

Fiddler generated certificate has invalid digital signature

Fiddler: v5.0.20182.28034 for .NET 4.6.1 Cert Generator: Tried both CertEnroll & MakeCert Machine: Windows 10 Browser: Chrome I have tried installing fresh fiddler also but no success. I even installed and reinstalled Fiddler Root Cert.

fiddler makecert certenroll fiddler-dev

asked Dec 29 '18 at 12:58

coder

votes

0 answers

Webbrowser control and certenroll

Hi I have a really simple program, just a webbrowser control and one line of code. Webbrowser1.navigate "www.sspcrs.ie/sha2" This gives a vb scripting error/exception about being unable to create a certenroll object. If I go to the same url in…

vb.net webbrowser-control certenroll

asked Jan 16 '18 at 11:43

gardener

votes

2 answers

no certificate available when enrolling on behalf

I have one WinServer 2008 Domain controller and a CA server on it. I log in with the Administrator account and want to request a certificate "on behalf" of a user of my DC. for doing that, at first I duplicated these certificate templates: smart…

windows certificate ca certenroll

asked Jul 25 '17 at 10:18

saeidfaraji98

votes

0 answers

CERTENROLLLib C# self signed certificate issues

I'm trying to create a self signed certificate in C# that has a non-exportable private, to be used to encrypt/decrypt a symmetrical key. Now my initial try was to use bouncy castle, also see prev post. Now that isn't working out because I'm not…

c# x509certificate2 certenroll

asked Jan 16 '17 at 17:21

Spyral

votes

0 answers

C# asp.net CERTENROLLLib PKCS10 creation

I'm trying to create a keypair running the above code sample. I'm running this inside a activex. I have no problem to run this local, but when I install it on my server, it's not working properly, it only works if I run my IE as…

c# asp.net rsa certenroll

asked Nov 09 '16 at 22:11

Rodrigo Zaratin

votes

0 answers

Generating non-compatible certificate with a CA

I'm using this stretch of code to create a request, which will be sent to validation in my CA, but when arrives there is denied: Using: .NET framework 3.5 Is a Dll project IIS 6.0 CertEnroll.dll There is no possibility to update…

c# x509 private-key public-key certenroll

asked Nov 08 '16 at 19:15

Guilherme Moraes da Silveira

votes

1 answer

SCEP CertRep SUCCESS: how many certs are in the response?

I am working on an SCEP implementation (both requester and authority). The project uses JScep as a library. During the communication for a PKCSReq the client receives a CertRep SUCCESS. The draft says the following: …

x509certificate certenroll jscep

asked Oct 29 '15 at 09:16

csikos.balint

1,107
2
10
25

votes

1 answer

"certcli 1.0 type library" vs CertComLIB vs "Certenroll 1.0 type library" vs "CertEnc"

I'm trying to work with client side certificate enrollment via COM Interop Which library is appropriate for use?

encryption certificate x509certificate com-interop certenroll

asked Feb 26 '15 at 00:35

makerofthings7

60,103
53
215
448

votes

1 answer

An enrollment policy server could not be located

I tried creating a PKCS10 request from another dll. In case of xenroll, the CSR got created successfully. Where as when i use certenroll, "An enrollment policy server could not be located" error is returned in the "InitializeFromPrivateKey" function…

windows internet-explorer digital-certificate csr certenroll

asked Aug 06 '13 at 02:52

Buzz LIghtyear

-1

votes

1 answer

Error trying to use the Private Key of cert retrieved from CurrentUser Store

I am trying to sign a a CSR with my Certificate Agent Certificate. however when I get the certificate from currentUser's store and I try to use the key to sign it I get this error "CertEnroll::CSignerCertificate::Initialize: Cannot find object or…

c# .net x509certificate certificate-store certenroll

asked Apr 10 '19 at 23:48

Igal Flegmann

Prev 1 2 3