Solved

Creating a Certificate Request with Tomcat 6 to be signed my our 2008 CA

Posted on 2011-09-26
1
1,105 Views
Last Modified: 2012-05-12
I am using the below Tomcat website to create a Certificate Signing Request for our Windows 2003 Web server running Tomcat 6.
http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html
I use the following 2 commands;

1.    keytool -genkey -alias tomcat -keyalg RSA \ -keystore <your_keystore_filename>
2.    keytool -certreq -keyalg RSA -alias tomcat -file certreq.csr \ -keystore <your_keystore_filename>

It creates  a certreq.csr.

I then Open my Windows 2008 Certificate Services CA and select; All Tasks/Submit New Request
Then select my certreq.csr file.
It gives me this error;
"The request contains no certificate template information 0x80094801 (-2146875391) Denied by Policy Module, the request does not contain a certificate template extension or the certificate template request attribute".



 
   
0
Comment
Question by:lanman777
1 Comment
 
LVL 30

Accepted Solution

by:
Brad Howe earned 500 total points
ID: 36601576
Hi,

Sounds like you have an Enterprise CA. it was the same setup with 2003.

ECA's (Enterprise CA) require templates where SCA's (Standalone CA) can be submited through certsrv.
http://support.microsoft.com/kb/910249/en-gb

Typically, ECA's are sent directly to the CA. Give this a shot from commandline on the ECA.

certreq -submit -attrib "CertificateTemplate:WebServer" certreq.csr

It should be in Pending for you to process afterwards.
Cheers,
Hades666
0

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

OfficeMate Freezes on login or does not load after login credentials are input.
This article explains how to install and use the NTBackup utility that comes with Windows Server.
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question