Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Creating a CSR using certreq.exe

Posted on 2014-02-12
1
Medium Priority
?
3,277 Views
Last Modified: 2014-02-14
Hello Experts,
Thanks in advance for your assistance.

I am trying to implement a Safenet LUNA HSM to store our SSL certificates and need to use certreq.exe in order to  generate a CSR.  I am following instructions that I found on the Safenet website for IIS deployment.  http://www2.safenet-inc.com/AWS-guides/Microsoft_Internet_Information_Services_Integration_guide_RevD.pdf

The instructions suggest I create a request.inf file with the key request info and then run certreq.exe to generate a CSR.  The request.inf info is listed here.

[Version]
Signature= "$Windows NT$"
[NewRequest]
Subject = "C=US,CN=example.com,O=Company,OU=HSM,L=City,S=State"
Exportable = TRUE
HashAlgorithm = SHA256
KeyAlgorithm = RSA
KeyLength = 4096
ProviderName = "Safenet Key Storage Provider"
KeyUsage = 0xf0
MachineKeySet = True
[EnhancedKeyUsageExtension]
OID=1.3.6.1.5.5.7.3.1

The problem I am experiencing is that when I run "certreq.exe -new request.inf request.req" I get an error that says "Invalid provider specified. 0x80090013"

Does anyone know if there is something else I need to have in my .inf file?  Or is there list of acceptable ProviderNames?

Thanks very much for your help!
0
Comment
Question by:JoeNewbie
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 79

Accepted Solution

by:
arnold earned 2000 total points
ID: 39855574
Provider name is a specific parameter for windows cryptography and not from whom you are getting the certificate.
http://technet.microsoft.com/en-us/library/cc736326(v=WS.10).aspx
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The well known Cerber ransomware continues to spread this summer through spear phishing email campaigns targeting enterprises. Learn how it easily bypasses traditional defenses - and what you can do to protect your data.
Check out the latest tech news, community articles, and expert highlights in August's newsletter.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question