Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Creating a Certificate Request with Tomcat 6 to be signed my our 2008 CA

Posted on 2011-09-26
1
1,101 Views
Last Modified: 2012-05-12
I am using the below Tomcat website to create a Certificate Signing Request for our Windows 2003 Web server running Tomcat 6.
http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html
I use the following 2 commands;

1.    keytool -genkey -alias tomcat -keyalg RSA \ -keystore <your_keystore_filename>
2.    keytool -certreq -keyalg RSA -alias tomcat -file certreq.csr \ -keystore <your_keystore_filename>

It creates  a certreq.csr.

I then Open my Windows 2008 Certificate Services CA and select; All Tasks/Submit New Request
Then select my certreq.csr file.
It gives me this error;
"The request contains no certificate template information 0x80094801 (-2146875391) Denied by Policy Module, the request does not contain a certificate template extension or the certificate template request attribute".



 
   
0
Comment
Question by:lanman777
1 Comment
 
LVL 30

Accepted Solution

by:
Brad Howe earned 500 total points
ID: 36601576
Hi,

Sounds like you have an Enterprise CA. it was the same setup with 2003.

ECA's (Enterprise CA) require templates where SCA's (Standalone CA) can be submited through certsrv.
http://support.microsoft.com/kb/910249/en-gb

Typically, ECA's are sent directly to the CA. Give this a shot from commandline on the ECA.

certreq -submit -attrib "CertificateTemplate:WebServer" certreq.csr

It should be in Pending for you to process afterwards.
Cheers,
Hades666
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lync server 2013 or Skype for business Backup Service Error ID 4049 – After File Share Migration
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question