1

I am searching for another way to manage my CA.

I wrote a powershell script, which allows me to show all my certificates for a specified requester name or request id and to revoke those certificates.

Is it possible to do this in certutil? I can't find any information about the request id or the requester name

Greg Askew
  • 34,339
  • 3
  • 52
  • 81
Envy
  • 23
  • 4
  • Why not PowerShell? – Crypt32 Oct 26 '16 at 14:08
  • Im working in a high security department. Our consultant told me that the powershell pspki module is based on c# or c++ (i dont know) and to install this on our CA is not secure. thats why i want to change to certutil. – Envy Oct 27 '16 at 10:12
  • It is based on C# and is open source, I don't see any security issues here. CA automation with certutil is a real pain. And you don't need to install pspki module on CA server because it supports remote connections to CA. – Crypt32 Oct 27 '16 at 11:38
  • how do i use the pspki cmdlets without the module? I havent seen a other solution than installing the pspki module – Envy Oct 27 '16 at 13:07

0 Answers0