Certificate Template Name: CA
Next message: Ghazanfar Ali: "Usage of CertVerifyRevocation"
Date: 20 Oct 2005 20:32:28 -0700
Hi,
I'm trying to configure a Enterprise Certificate authority (Windows
Server 2003, Enterprise Edition) and need to customize the root
certificate. I'm aware that I can set certain
parameters in capolicy.inf.
I'd like to remove "Certificate Template Name: CA" from root
certificate, how do I do this?
Many thanks in advance for any help.
Next message: Ghazanfar Ali: "Usage of CertVerifyRevocation"
Relevant Pages
- Re: Signtool doesnt add entire chain when signing files
... you only need to ensure that the intermediate certificates are included in the signature so that the client can build a chain to the root. ... The root needs to be installed as a trusted root certificate on the client in order for the client to trust the certificate. ... Given that you don't have any intermediate certificates, it doesn't matter or not whether they are included in the signature so it should not matter if there is any difference between the wizard mode and the command line tool mode. ...
(microsoft.public.platformsdk.security) - Re: Schannel CertificateChainValidation failing
... I am not fully up to speed with certs (root, end entity, ... valid Windows trusted root cert. ... You've enabled certificate revocation checking, and the validation code ...
(microsoft.public.platformsdk.security) - Re: Certificate chain issue with Ent Sub Ca & stand alone Root CA
... certificate and I get a "Cannot verify certificate chain. ... revocation because the revocation server was offline. ... the root ca? ... Online>>> Online Enterprise Subordinate CA ...
(microsoft.public.windows.server.security) - Re: Newbie wants to learn about PKI Server 2003......
... 2003 PKI Certificate Security", and have been lurking here for a bit. ... We will implement a 2 tier heirarchy, with the Root CA being offline. ... All clients that attempt revocation checking will first attempt to retrieve the CRL from the ... level below a self-signed cert, so applications that are 3280 compliant would never check the ...
(microsoft.public.windows.server.security) - Re: Is it possible??.... Defining Root Certificate KeyUsage
... For instance, the self signed certificate ... intermediate servers list every possible key usage defined within the PKI ... Component Verification, OEM Windows System Component Verification, Embedded ... Since the only use these root and intermediate keys are designed for is ...
(microsoft.public.inetserver.iis.security) |
|
