Besonderheit bei Hetzner & All Ink DNS Validierung bei feld Value mus ein extra punkt hinzugefügt werden.
CSR Generation: Using certreq (Windows) |
This article is for administrators who prefer the command shell! Save the following file as request.inf on your server editing the subject according to the comment: ;—————– request.inf —————– [Version] Signature=“$Windows NT$“ [NewRequest] ;Change to your,country code, company name and common name Subject = „C=US, O=Example Co, CN=something.example.com“ KeySpec = 1 KeyLength = 2048 Exportable = TRUE MachineKeySet = TRUE SMIME = False PrivateKeyArchive = FALSE UserProtected = FALSE UseExistingKeySet = FALSE ProviderName = „Microsoft RSA SChannel Cryptographic Provider“ ProviderType = 12 RequestType = PKCS10 KeyUsage = 0xa0 HashAlgorithm = SHA256 [EnhancedKeyUsageExtension] OID=1.3.6.1.5.5.7.3.1 ; this is for Server Authentication / Token Signing ;———————————————– then run C:\>certreq -new request.inf request.csr certificate Installation: Using certreq (Windows) This article is for administrators who prefer the command shell! When your certificate is issued you’ll typically receive a file called store_acmesave_com.cer. Save it on the server and from the same directory run: certreq -accept store_acmesafe_com.cer This will install the cert in the Windows certificate store and it will be available to those services and products that make use of the Windows certificate store. These products include but are not limited to: IIS, Exchange, Active Directory (LDAPS), Terminal Services and Microsoft Management Console (MMC). Multidomain am Ende Anfügen, bei Partnergate nicht notwendig, da man die weiteren Domains einfach online eingeben kann: [Extensions] ; If your client operating system is Windows Server 2008, Windows Server 2008 R2, Windows Vista, or Windows 7 ; SANs can be included in the Extensions section by using the following text format. Note 2.5.29.17 is the OID for a SAN extension. 2.5.29.17 = „{text}“ _continue_ = „dns=www.maindomain.com&“ _continue_ = „dns=www.domain2.com&“ _continue_ = „dns=maindomain.com&“ _continue_ = „dns=domain2.com&“ |