Stack Overflow
Stack Overflow

Questions tagged [certutil]

Windows command for managing Certificate Services.

Certutil.exe is a command-line program that is installed as part of Certificate Services. You can use Certutil.exe to dump and display certification authority (CA) configuration information, configure Certificate Services, backup and restore CA components, and verify certificates, key pairs, and certificate chains. When certutil is run on a certification authority without additional parameters, it displays the current certification authority configuration. When cerutil is run on a non-certification authority, the command defaults to running the certutil -dump verb.

Useful links:

  1. CERTUTIL on technet.
  2. CERTUTIL on SS64 help pages.
99 questions
0
votes
0 answers

Decoding Base64 files in windows

So I have been tasked with automating getting certs for 1000 devices. And have been working though converting a Linux script to windows to match up with other scripts we have for other sections for this automation. To that end I have been able to…
Daniel Pierce
  • 13
  • 4
0
votes
0 answers

CERTUTIL doesn't seem to handle double-quotes in a password

I'm having an issue with CERTUTIL. I can't find a way to escape the double-quote character. I have a PFX file with the password 'Pass"word' (no single-quotes.) The following command produces this output: C:\Logs>CERTUTIL -f -p Pass"word -importpfx…
MEERLIGHT
  • 21
  • 2
0
votes
0 answers

Powershell and Certutil Win10 and Win7 differences - issues with -enterprise and -ImportPfx command on Win7

I am struggling with CertUtil command called from Powershell on Win 7: certutil -enterprise -f -p 'my password' -importpfx root 'mypfxfile.pfx'; It is working perfectly on Win 10 but on Win 7 it is saying that: CertUtil: Unexpected "-enterprise"…
piort
  • 29
  • 3
0
votes
0 answers

How to import a .cer file and associate with its primary key

I have a .cer file that was generated with a new expiry date from a previous CSR. When I import it into certmgr on a Windows Server 2016 box (logged on as the correct user etc), it doesn't have a primary key as the previous cert did. I've tried…
JTDotNet
  • 65
  • 11
0
votes
0 answers

Add list of files to a command

I am not expert on PowerShell so just trying to find way here I am trying to get a list of files added to a command. I have a folder full of certs cert1.p12 cert2.p12 cert3.p12 How do I get these files listed for my command bellow and separated by…
Rafael Luz
  • 1
  • 1
0
votes
1 answer

DDEV Install "unable to locate the package certutil"

I am trying to run Drupal on DDEV. In an administrative window, I installed mkcert v1.4.4. I have successfully installed Docker, Ubuntu 2204.1.6 and DDEV. When I run sudo apt-get update && sudo apt-get install -y certutil xdg-utils in Ubuntu, I…
Len Lamberg
  • 1
  • 3
0
votes
0 answers

List all CRL Distribution Points in Windows Certificate Store

Windows Server 2019 seems to check if a x509 certificate was revoked. Since the machine is behind a proxy I´d like to whitelist the urls neccessary. For that I´d like to generate a list of all hosts (like crl.xxx.com, crl.yyy.com) that are necessary…
Patrick
  • 3
  • 3
0
votes
1 answer

How can I install a certificate on a remote machine with cmd (psexec)

I'm trying to install a certificate using cmd on a remote machine. Before you suggest PS please keep in mind I can't use PS since the remote machine is some custom Windows which doesn't have it. So for everything I am doing remotely I use psexec. I…
UrosT
  • 181
  • 1
  • 6
0
votes
2 answers

SHA256 hash doesn't match download - what now?

Hello stackoverflow World, I'm investigating using the miniconda package manager for the first time. I downloaded the files from here: https://docs.conda.io/en/latest/miniconda.html I'm on a windows machine so downloaded the following file: As I…
PyDom
  • 21
  • 1
  • 5
0
votes
1 answer

Certutil repair Code Signing Certificate in CurrentUser not LocalMachine

So this is my first time having this problem last time my code signing certificate was installed correct and without problems this time however the private key flag is missing from my certificate and after searching for about an hour I found…
Barkermn01
  • 6,781
  • 33
  • 83
0
votes
1 answer

Get Issuing CA from certutil dump or by serial number (Windows Server PKI)

Is there any way to get the Certification Authority, that issued a certificate by a certutil command or by some interface where I can put the serial number of a certificate into? Our company has hundred thousands of certificates issued by 5…
SHA-256
  • 32
  • 6
0
votes
0 answers

Certutil "Too Many Arguments" error when using python os.system command window

Trying to decode a simple file into a temporary text file using the code below: os.system("start cmd /k certutil -f -decode \\SDHQFILE03.enxco.com\\arcgis\\General\\Solar\\R_and_D\\CodeLibrary\\Python\\EPE2.1.7\\34287.bat…
C. Nielsen
  • 11
  • 2
0
votes
1 answer

Does certutil's -csp "Microsoft Platform Crypto Provider" option store the private key in the TPM?

Does certutil -csp "Microsoft Platform Crypto Provider" -importpfx options really store the private key in the TPM? I am wondering why the output of certutil -key -csp "Microsoft Platform Crypto Provider" shows me a location on the…
lee23
  • 409
  • 1
  • 3
  • 10
0
votes
1 answer

Running certutil -hashfile with standard inputs for filepath and hashtype (c++)

First time posting. I am trying to write a simple program that takes a file path and a hash type from standard input, and outputs the corresponding hash using certutil. Later I would like to compare the hash to one that the user enters, and output a…
moose-tee
  • 1
  • 1
0
votes
0 answers

Merging cmdlet outputs

I've been trying to solve this problem for a while but can't seem to find a decent solution. I'm pulling the output of two certutil commands inside of a Powershell script: certutil -View -config $CAserver -restrict "Disposition=20" csv >>…
messysf
  • 11
  • 1
1 2 3
4
5 6 7