Versions Compared

Version Old Version 36 New Version 37
Changes made by

Alex Barth

Alex Barth

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Create the certificate request

  1. Review then run the Run the following commands to create the temporary files for the certificate policy file and certificate request file: 

    Code Block
    $cert_file_inf = New-TemporaryFile
$cert_file_req = New-TemporaryFile


  2. Run the following commands to create the certificate policy file

    Code Block
    $cert_file_content = @"
[Version]
Signature=`"`$Windows NT`$`"
 
[NewRequest]
Subject=`"CN=$cert_fqdn`"
Exportable=TRUE
MachineKeySet=TRUE
KeyLength=2048
 
[Extensions]
2.5.29.17=`"{text}`"
_continue_=`"DNS=$cert_fqdn&`"
"@
 
New-Item $cert_file_inf -Type File -Force
Set-Content $cert_file_inf $cert_file_content


  3. Run the following commands to add any optional DNS subject alternate names to the certificate policy file: 

    Code Block
    ForEach ($san in $cert_sans) {Add-Content $cert_file_inf ("_continue_=`"DNS=$san&`"")}


  4. Run the following commands to add any optional IP Address subject alternate names to the certificate policy file: 

    Code Block
    ForEach ($ipaddr in $cert_ipaddrs) {Add-Content $cert_file_inf ("_continue_=`"IPAddress=$ipaddr&`"")}


  5. Run the following commands to review the certificate policy file: 

    Code Block
    Get-Content $cert_file_inf


  6. Run the following commands to create the certificate request file:

    Code Block
    certreq -new -f $cert_file_inf $cert_file_req


  7. Run the following commands to review the certificate request: 

    Code Block
    Get-Content $cert_file_req


  8. Run the following commands to retrieve the certificate request file name: 

    Code Block
    Get-Item $cert_file_req


...