Re: Changing the CSP for a certificate

From: S. Pidgorny (slavickp_at_yahoo.com)
Date: 10/31/04 

Date: Sun, 31 Oct 2004 10:53:08 +1100

That's true- you cannot choose a CSP when importing a .p12 file (something
to add to the next version?) - however, some vendors provide utilities to
import the files to their devices/CSP. 

-- 
Svyatoslav Pidgorny, MVP, MCSE
-= F1 is the key =-
"Anand Abhyankar [MS]" <ananda@online.microsoft.com> wrote in message
news:OPF906gvEHA.2172@TK2MSFTNGP14.phx.gbl...
> As far as I know you cannot select the CSP in the Import/Export Wizard
which
> is used to import the P#12 files.
> What is the default CSP set on your machine?
>
>
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/seccrypto/security/cryptgetdefaultprovider.asp
>
> You can try setting "Microsoft Enhanced Cryptographic provider v1.0" as
> default. I can't gurantee that it will work but you can try it.
>
> -- 
> Thanks,
> Anand Abhyankar [MS]
>
> ----
> This posting is provided "AS IS" with no warranties, and confers no
rights.
>
>
> "S. Pidgorny <MVP>" <slavickp@yahoo.com> wrote in message
> news:uTXO7QZvEHA.1984@TK2MSFTNGP14.phx.gbl...
> >I might be wrong but I think you'll have to export certificate and the
> > private key to PKCS#12 file and then import the combo into the other
one.
> > I'm not sure how to do that, but I'm sure that CSP is set at the time of
> > the
> > keypair generation.
> >
> > If fellow MVPs won't follow up here, posting to
> > microsoft.public.platformsdk.security or
> > microsoft.public.windows.server.security will help.
> >
> > -- 
> > Svyatoslav Pidgorny, MVP, MCSE
> > -= F1 is the key =-
> >
> > "Marcelo" <Marcelo@discussions.microsoft.com> wrote in message
> > news:8E688ACA-CBF6-4D95-AC9B-EE8590BD1BFE@microsoft.com...
> >> Hi,
> >>
> >> I have a certificate generated under OpenSSL that, when imported on
> > Windows,
> >> accepted the "Microsoft Base Cryptographic provider v1.0" CSP. I need
it
> > to
> >> be under "Microsoft Enhanced Cryptographic provider v1.0". Is that
> > possible?
> >>
> >> Thanks in advance
> >
> >
>
>

Relevant Pages

  • Re: BAD DATA in CryptImportKey
    ... It looks like the key is being exported and imported from a custom CSP. ... > I'm importing a key from a smart card released by a public CA! ... > bCryptAcquireContext = CryptAcquireContext( ... > printf("Size of the BLOB for the public key determined. ...
    (microsoft.public.platformsdk.security)
  • Re: Not able to import a personal certificate in IE browser
    ... I assume you are importing a PFX file. ... Where was the certificate and private key generated originally? ... to have the CSP which generated this private key installed on this machine. ... installing the high encryption pack (see ...
    (microsoft.public.platformsdk.security)
  • Re: SmartCard CSP and CA certificate enrollment
    ... Store for each of the two keys in the ... 'default' container on the smart card. ... CSP Design & Development Consulting ... enrolls for a certificate, the Certificate Enrollment Wizard offers the ...
    (microsoft.public.platformsdk.security)
  • RE: Storing certificate on a hardware token (SC)
    ... The usual way is to get context to the token's CSP (each token vendor has its ... Next you create a container and within that ... KP_CERTIFICATE to add the cert to the key. ... Note that in order to use the certificate from generic Windows applications ...
    (microsoft.public.platformsdk.security)
  • RE: CSPs and Certificate Extensions
    ... This matches the calls that are made to my CSP that I ... That means the problem is occurring when the certificate is being accessed - ... CPSignHash is called with the key spec set to AT_KEYEXCHANGE. ... of the IE certificate store. ...
    (microsoft.public.platformsdk.security)