locked
certreq -accept Problem! RRS feed

Answers

  • On Wed, 31 Oct 2012 01:51:43 +0000, Alanu wrote:

    and certutil don't have the "-accept" command.

    Brian meant certreq, not certutil. The fact the the usage text was
    displayed means that you haven't formed the command correctly. In fact, the
    error message in the cmd prompt window is telling you exactly what the
    problem is, you need to specify either -user or -machine as part of the
    command line.


    Paul Adare
    MVP - Forefront Identity Manager
    http://www.identit.ca
    E Pluribus UNIX.

    • Proposed as answer by Diana Zhang - MSFT Monday, November 5, 2012 6:42 AM
    • Marked as answer by 朱鸿文 Wednesday, November 7, 2012 2:47 AM
    Friday, November 2, 2012 7:34 AM

All replies

  • It appears that the matching key pair was not found:

    1) Are you on the same computer where you generated the request

    2) If you are, then you have to run either certutil -user -accept ssl.cer or certutil -machine -accept ssl.cer (depending on whether the request was originally generated in the machine security session or the user's

    Brian

    • Proposed as answer by 朱鸿文 Wednesday, October 31, 2012 1:30 AM
    Thursday, October 25, 2012 10:26 PM
  • Im on the same machine.

    and certutil don't have the "-accept" command.


    If you do not understand me try Spanish :)

    Wednesday, October 31, 2012 1:51 AM
  • Hi Alanu,

    I am trying to involve someone familiar with this topic to further look at this issue. There might be some time delay. Appreciate your patience.

    Thank you for your understanding and support.

    Regards

    Kevin

    TechNet Subscriber Support

    If you are TechNet Subscription user and have any feedback on our support quality, please send your feedback here.

     
    Friday, November 2, 2012 6:22 AM
  • Hi,

    It might be caused by incorrect permission.

    If the certificate is for computer, check NTFS permission for the following directory on this client:

    C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys

    By default, Administrators has Full Control permission. Everyone has special permissions without execute files, delete, change permissions and take ownerships permission. 

    If it is for user, check NTFS permission on the folder C:\Users\%username%\AppData\Roaming\Microsoft\Crypto\RSA.

    By default, user, system and administrators have Full Control permissions.

    Regards,

    Diana


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

    Friday, November 2, 2012 7:33 AM
  • On Wed, 31 Oct 2012 01:51:43 +0000, Alanu wrote:

    and certutil don't have the "-accept" command.

    Brian meant certreq, not certutil. The fact the the usage text was
    displayed means that you haven't formed the command correctly. In fact, the
    error message in the cmd prompt window is telling you exactly what the
    problem is, you need to specify either -user or -machine as part of the
    command line.


    Paul Adare
    MVP - Forefront Identity Manager
    http://www.identit.ca
    E Pluribus UNIX.

    • Proposed as answer by Diana Zhang - MSFT Monday, November 5, 2012 6:42 AM
    • Marked as answer by 朱鸿文 Wednesday, November 7, 2012 2:47 AM
    Friday, November 2, 2012 7:34 AM