0
1
I've got a custom certificate that I'm using as a local root authority. This certifcate has a private key on my machine and is stored in the "Personal" certificates store of the "Local Machine" location.
I want to use this to sign a Certificate Signing Request file created by an outside organisation.
I've been searching documenation for ages and I can't find a way to do this using Microsoft tools. Does anyone have any ideas.
Do you have the Certificate Authority (something like that) role installed? What Windows are you using? – Daniel B – 2014-09-05T15:51:57.367
Windows 7 and Windows Server 2008. I wanted to avoid the need to set-up a full CA as all I really want is to sign a single cert. – Andy Skirrow – 2014-09-05T16:34:31.133
You always need a “full CA”, otherwise you wouldn’t be able to sign, no? ;) If you want something less bulky, take a look at OpenSSL and EasyRSA.
– Daniel B – 2014-09-05T16:56:31.163@DanielB -- in theory I should only need a trusted root certificate with a private key. I don't want to install loads of services just to sign a single csr. – Andy Skirrow – 2014-09-08T08:30:22.313
Yeah, well, that’s just how it is on Windows. Nothing you can do about it. – Daniel B – 2014-09-08T15:13:41.513