Stack Overflow
Stack Overflow

Questions tagged [certutil]

Windows command for managing Certificate Services.

Certutil.exe is a command-line program that is installed as part of Certificate Services. You can use Certutil.exe to dump and display certification authority (CA) configuration information, configure Certificate Services, backup and restore CA components, and verify certificates, key pairs, and certificate chains. When certutil is run on a certification authority without additional parameters, it displays the current certification authority configuration. When cerutil is run on a non-certification authority, the command defaults to running the certutil -dump verb.

Useful links:

  1. CERTUTIL on technet.
  2. CERTUTIL on SS64 help pages.
99 questions
1
vote
0 answers

certutil export ALL certs using command prompt

I'm currently exporting a single file one at a time. anyone can help revise my command line to export ALL the certs from my store? what i need to achieve is: 1) export all certs from my store into a C:\folder Any help please? :) The code has to…
demon sky
  • 23
  • 2
  • 8
1
vote
1 answer

What is the certutil syntax to add in a modifier like "ExtendedProperties"

I am trying to find out where to put the modifier "ExtendedProperties" in the certutil -p "abcd" -exportPFX.... What would the syntax look like?
john.trussell
  • 11
  • 2
1
vote
1 answer

Can’t use Mozilla’s cert9.db with certutil.exe

The following command: certutil.exe -L -d “C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\1bku2z91.default-1633392324717\” returns this error message: certutil.exe: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is…
miran80
  • 945
  • 7
  • 22
1
vote
2 answers

How do I make CertUtil recursively go into my folders and subfolders

Simply put I am trying to take a hash of all of my files in a given directory. I am doing this by calling CertUtil and running: for %F in (L:\TestDirectory\*) do (certutil -hashfile "%F" MD5&echo.) >> L:\certutilOutput.txt This works well, but…
TheGoblinPopper
  • 149
  • 1
  • 3
  • 12
1
vote
0 answers

How to generate cert7.db from cert9. with certutil

due to a legacy project I need to generate a cert7.db file in order to use with LDAP. I've downloaded certutil on Debian but by default it generates cert9.db. There is a way to convert cert9.db to cert7.db? Thanks
Giuseppe Terrasi
  • 479
  • 7
  • 22
1
vote
0 answers

Build NSS 3.35 to get Certutil in Windows 10. Error, C Compiler cannot create executables

I would like to Install a certificate programmatically on Firefox version 59. I read that i need CertUtil, but the certutil code that i got on github is built from old NSS. so it only generates cert8.db and not Cert9.db, which Firefox 59 needs i…
Rommel Sudan
  • 41
  • 1
  • 2
  • 6
1
vote
0 answers

certutil.exe returns "The specified network password is not correct"

I am creating CA Root Certificate and then Self-Signed Machine Certificate using Bouncy Castle library as follows. I list below the entire implementation. I am able to create password-protected .PFX file. Despite that I create CA Root Certificate…
Leon
  • 165
  • 12
1
vote
0 answers

Phonegap CertUtil: -importPFX command FAILED

I keep getting a `COMPILE OUTPUT CertUtil: -importPFX command FAILED: 0x80070002 (WIN32: 2 ERROR_FILE_NOT_FOUND) CertUtil: The system cannot find the file specified. My "Personal" CertUtil: -delstore command completed successfully. When i try to…
Ma9ic
  • 1,107
  • 4
  • 16
  • 30
1
vote
2 answers

certutil -hashfile : processing multiple files in a drag-dropped folder

I'm trying to create a batch script that runs certutil -hashfile MD5 on each file in a folder and write the output to a file. I have this code below except it only works on the files in the current folder, I would like it to work such that when a…
furutsun
  • 11
  • 1
  • 3
1
vote
2 answers

CertUtil -hashfile Output to File and Error Handling

I need to generate a file with hashfile tags from a list of files that is generated within the same batch file. Here is the code that I have so far: @echo off setlocal enabledelayedexpansion :: Set the variables for this script. set…
indy-pc
  • 27
  • 1
  • 6
1
vote
2 answers

How to import pfx certificate and set private key permissions for all users

I have self-signed pfx certificate, and machine with 2 users (A and B). I need to install the certificate using some command line tool and it should be available for all users. In case user A installs the certificate manually in LocalMachine\My or…
Evgeniy
  • 403
  • 1
  • 8
  • 18
1
vote
3 answers

How to update the validity period of an existing CA template programatically or using command-line program

I'm looking for a way to update the Validity period of an existing CA Template, do you know if this is possible using certutil, any other command or programatically with Powershell or C#. The CA is running on Windows Server 2008 R2. My goal is run…
m0dest0
  • 849
  • 4
  • 17
  • 36
1
vote
0 answers

Using certutil in custom website to enroll certificates

We are looking for an opportunity to request and enroll certificates on Android and iOS Devices with certutil. Unfortunately we can't use a MDM. Requesting a certificate, exporting and sending via mail or getting it via usb to the device is also not…
d0zer
  • 235
  • 1
  • 4
  • 9
1
vote
1 answer

Why does windows certutil and openSSL display CSR (pkcs#10) signature bytes differently?

Why does windows certutil and openSSL display CSR (pkcs#10) signature bytes differently? I ran this command in windows: certutil -dump [p10_filename] output: PKCS10 Certificate Request: Version: 1 Subject: <*** REMOVED ***> ... Signature Algorithm: …
atom88
  • 1,449
  • 3
  • 22
  • 32
1
vote
1 answer

Dart, use SSL emitted by an authority

I create a db with certutil myproject/bin/pkcert echo "dartdart" > pwdfile certutil -N -d 'sql:./' -f pwdfile Then, I import my certificate validated by an authority certutil -d "sql:./" -A -t "C,C,C" -n "my_cert" -i certificate.crt I check if it…
Druxtan
  • 1,311
  • 2
  • 15
  • 21
1 2
3
4 5 6 7