Versions Compared

Version Old Version 37 New Version 38
Changes made by

Alex Barth

Alex Barth

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Run the following commands to create the temporary files for the certificate policy file and certificate request file: 

    Code Block
    $cert_file_inf = New-TemporaryFile
$cert_file_req = New-TemporaryFile


  2. Run the following commands to create the certificate policy file

    Code Block
    $cert_file_content = @"
[Version]
Signature=`"`$Windows NT`$`"
 
[NewRequest]
Subject=`"CN=$cert_fqdn`"
Exportable=TRUE
MachineKeySet=TRUE
KeyLength=2048
 
[Extensions]
2.5.29.17=`"{text}`"
_continue_=`"DNS=$cert_fqdn&`"
"@
 
New-Item $cert_file_inf -Type File -Force
Set-Content $cert_file_inf $cert_file_content


  3. Run the following commands to add any optional DNS subject alternate names to the certificate policy file: 

    Code Block
    ForEach ($san in $cert_sans) {Add-Content $cert_file_inf ("_continue_=`"DNS=$san&`"")}


  4. Run the following commands to add any optional IP Address subject alternate names to the certificate policy file: 

    Code Block
    ForEach ($ipaddr in $cert_ipaddrs) {Add-Content $cert_file_inf ("_continue_=`"IPAddress=$ipaddr&`"")}


  5. Run the following commands to review the certificate policy file: 

    Code Block
    Get-Content $cert_file_inf


  6. Run the following commands to create the certificate request file:

    Code Block
    certreq -new -f $cert_file_inf $cert_file_req


  7. Run the following commands to review the certificate request: 

    Code Block
    Get-Content $cert_file_req


  8. Run the following commands to retrieve the certificate request file name: 

    Code Block
    Get-Item $cert_file_req


...