Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3361
  • Last Modified:

Creating a CSR using certreq.exe

Hello Experts,
Thanks in advance for your assistance.

I am trying to implement a Safenet LUNA HSM to store our SSL certificates and need to use certreq.exe in order to  generate a CSR.  I am following instructions that I found on the Safenet website for IIS deployment.  http://www2.safenet-inc.com/AWS-guides/Microsoft_Internet_Information_Services_Integration_guide_RevD.pdf

The instructions suggest I create a request.inf file with the key request info and then run certreq.exe to generate a CSR.  The request.inf info is listed here.

[Version]
Signature= "$Windows NT$"
[NewRequest]
Subject = "C=US,CN=example.com,O=Company,OU=HSM,L=City,S=State"
Exportable = TRUE
HashAlgorithm = SHA256
KeyAlgorithm = RSA
KeyLength = 4096
ProviderName = "Safenet Key Storage Provider"
KeyUsage = 0xf0
MachineKeySet = True
[EnhancedKeyUsageExtension]
OID=1.3.6.1.5.5.7.3.1

The problem I am experiencing is that when I run "certreq.exe -new request.inf request.req" I get an error that says "Invalid provider specified. 0x80090013"

Does anyone know if there is something else I need to have in my .inf file?  Or is there list of acceptable ProviderNames?

Thanks very much for your help!
0
JoeNewbie
Asked:
JoeNewbie
1 Solution
 
arnoldCommented:
Provider name is a specific parameter for windows cryptography and not from whom you are getting the certificate.
http://technet.microsoft.com/en-us/library/cc736326(v=WS.10).aspx
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now