Link to home
Create AccountLog in
Avatar of Carlo-Giuliani
Carlo-GiulianiFlag for Canada

asked on

AD Certificate Services: what is the format of the "save response" text output on Certificate Issued page?

Hi,

I am playing with AD CS on Windows Server 2012, but it looks to me like this has not changed since the 2008 version.  When you use the web interface to get a user certificate, there is a link labelled "save response."  If you click on that link, it looks like an encoded-text version of the certificate is displayed.

I have tried saving that text as a .cer file, and as a .pfx file.  In both cases, the resulting file is invalid.

Anybody know how to use the "save response" output??

User generated image
Avatar of arnold
arnold
Flag of United States of America image

The difficulty is that the certificate here likely contains both the private and public keys.
It looks as a PEM formatted combination.

There are ways to convert this to a PFX that you can import.
There is a way using OpenSSL to convert between formats.
http://pumka.net/2009/12/19/reading-writing-and-converting-rsa-keys-in-pem-der-publickeyblob-and-privatekeyblob-formats/

Alternatively, you can select the install certificate option and then export it as a PFX using the certificate MMC.
Avatar of Carlo-Giuliani

ASKER

If it is in PEM format, then saving it with a .cer file extension should work.  But it does not.
SOLUTION
Avatar of arnold
arnold
Flag of United States of America image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
ASKER CERTIFIED SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
see comments above