[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

Creating a CSR using certreq.exe

Posted on 2014-02-12
1
Medium Priority
?
3,429 Views
Last Modified: 2014-02-14
Hello Experts,
Thanks in advance for your assistance.

I am trying to implement a Safenet LUNA HSM to store our SSL certificates and need to use certreq.exe in order to  generate a CSR.  I am following instructions that I found on the Safenet website for IIS deployment.  http://www2.safenet-inc.com/AWS-guides/Microsoft_Internet_Information_Services_Integration_guide_RevD.pdf

The instructions suggest I create a request.inf file with the key request info and then run certreq.exe to generate a CSR.  The request.inf info is listed here.

[Version]
Signature= "$Windows NT$"
[NewRequest]
Subject = "C=US,CN=example.com,O=Company,OU=HSM,L=City,S=State"
Exportable = TRUE
HashAlgorithm = SHA256
KeyAlgorithm = RSA
KeyLength = 4096
ProviderName = "Safenet Key Storage Provider"
KeyUsage = 0xf0
MachineKeySet = True
[EnhancedKeyUsageExtension]
OID=1.3.6.1.5.5.7.3.1

The problem I am experiencing is that when I run "certreq.exe -new request.inf request.req" I get an error that says "Invalid provider specified. 0x80090013"

Does anyone know if there is something else I need to have in my .inf file?  Or is there list of acceptable ProviderNames?

Thanks very much for your help!
0
Comment
Question by:JoeNewbie
1 Comment
 
LVL 81

Accepted Solution

by:
arnold earned 2000 total points
ID: 39855574
Provider name is a specific parameter for windows cryptography and not from whom you are getting the certificate.
http://technet.microsoft.com/en-us/library/cc736326(v=WS.10).aspx
0

Featured Post

KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ITIL has an elaborate incident management framework. This article serves as a starter for those who'd like to know more or need to suss out the baseline elements in a typical incident response execution plan on the "need to have" and the "good to ha…
The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question