Stack Overflow
Stack Overflow

Questions tagged [makecert]

makecert.exe is a command line X.509 digital certificate creation tool included with Microsoft Visual Studio. The certificates created are for testing purposes only. It is already deprecated, so don't use it.

The options for makecert can be found at

https://learn.microsoft.com/en-us/windows/desktop/seccrypto/makecert.

Microsoft now recommends users to switch to PowerShell

https://learn.microsoft.com/en-us/powershell/module/pkiclient/new-selfsignedcertificate?view=win10-ps

123 questions
3
votes
4 answers

Makecert certificates safe?

I made an application, which communicates over the. net SSLStream, and for developing I used makecert.exe to create a self signed ssl certificate. Now Ive read in some microsoft article, that makecert should be used for testing only. Now my…
Tearsdontfalls
  • 767
  • 2
  • 13
  • 32
3
votes
1 answer

Setting Private Key permissions for a Certificate in Win Server 2008

When creating a certificate with makecert on Windows Server 2003, I'd have to set the permissions on the private key to be accessible to NETWORK SERVICE so that the private key could be read by the WCF service. I could access the file by navigating…
Stealth Rabbi
  • 10,156
  • 22
  • 100
  • 176
2
votes
1 answer

signed exe coming up with publisher unknown with makecert

I am attempting, for internal use at the moment, setup a self installing exe which is signed and comes up with our company as the publisher and not "Unknown". I have executed the following steps: makecert.exe -sv Our.pfk -n "CN=Our Company"…
sldahlin
  • 685
  • 1
  • 8
  • 19
2
votes
2 answers

Unable to sign security tokens with certificate in WIF scenario

I'm trying to implement a custom STS for a WIF scenario I'm investigating, but it's failing. It's failing when trying to obtain the private key from the certificate used to sign the tokens. I create the STS with the following configuration: var…
Tim Roberts
  • 782
  • 4
  • 12
2
votes
0 answers

/INTEGRITYCHECK enabled- Windows Defender blocks self signed exe

I have enabled the /INTEGRITYCHECK linker option for the C++ exe. And created a self signed test certificate using makecert and added it to the trusted root using CertMgr. Signed the exe using Signtool with this test certificate. But when I am…
AcCoder
  • 51
  • 1
  • 4
2
votes
2 answers

WCF, Certificate Authentication - Common Errors and Confusing Arguments

I am trying to setup a WCF service to use a Certificate for Authenticating the client. I have read tons of posts on how to create the certificate, and I have been able to do so (finally). I am installing the Cert Authority and the Cert on a server…
essedbl
  • 520
  • 1
  • 7
  • 19
2
votes
2 answers

How do I create/export to a .PVK file using C#?

I have an RSA private key loaded in an RSACryptoServiceProvider object. I need to export this to a .pvk file for use with SQL Server. Is there a way to do this from within c#? I see it's possible using openssl...…
fafrd
  • 1,017
  • 13
  • 17
2
votes
0 answers

What is the significance ot the makecert -sk keyname option?

I am using makecert.exe to create an RSA certificate and I am wondering what the significance is of this option? -sk KeyName The documentation says "Specifies the subject's key container location, which contains the private key. If a key container…
Neil Weicher
  • 2,370
  • 6
  • 34
  • 56
2
votes
1 answer

SignTool Error: An unexpected internal error has occurred. (0x80080209)

I'm trying to sign appx file, but have this error: SignTool Error: An unexpected internal error has occurred. Error information: "Error: SignerSign() failed." (-2146958839/0x80080209) I found that the error means: The SIP_SUBJECTINFO structure used…
Oldes
  • 937
  • 1
  • 9
  • 24
2
votes
1 answer

Is there a way to generate self signed certificates (X509 v3 with Subject Alternative Name) with my own root certificate to replace MakeCert.exe

I am having issues with makecert not able to generate a self-signed SSL certificate with Subject Alternative Name (SAN) in place. Latest versions of Google Chrome gives a security error when the website is accessed over HTTPS. I have read through…
Lone Wolf
  • 21
  • 4
2
votes
2 answers

Fiddler doesn't work

Fiddler almost not work for me. Seems the problem only with https. For example to open https google.com I need to wait around 40 seconds Screenshots: immediately after request after ~40 seconds Fiddler log: 18:02:46:3326 Fiddler…
GDocal
  • 305
  • 4
  • 10
2
votes
0 answers

Purchasing a certificate for WCF communication?

For a long time I have been using "makecert.exe" to create my own certificate used for WCF communication between two clients. Now and then I get error reports from users which have a higher security/validation procedures and errors are raised like…
serializer
  • 1,003
  • 2
  • 13
  • 27
2
votes
1 answer

Windows revoke certificate (makecert, certmgr)

I created a root ca using makecert: makecert -r -pe -n "CN=MyRootCA" -b 01/01/2015 -e 01/01/2020 -ss root -sr localmachine -len 2048 I create a CRL for that root ca and imported this with certmgr: makecert -crl -n "CN=MyRootCA" -r -sv MyRootCRL.pvk…
Friedrich Merza
  • 109
  • 1
  • 8
2
votes
0 answers

Internet Explorer blocks self-signed ActiveX

I have create a self-signed certificate and signed my ActiveX. I followed the steps in this topic. (How do I create a self-signed certificate for code signing on Windows?) One difference is that my executable files come in MSI package. So I used…
Aing
  • 21
  • 2
2
votes
1 answer

Instantiating a X509Certificate object in C# which holds a private key as well

I'm trying to implement a secure TCP server and as the result I need to create an object of class X509Certificate2 in order to authenticate the clients. I believe such a certificate object should contain the private key (as well) in order to be able…
Mehran
  • 15,593
  • 27
  • 122
  • 221
1 2 3
8 9