none
Automate downloading certificates from FIM CM RRS feed

  • Question

  • How do I build a process to select the certificates issued during a certain time, and download the certificate public keys to files on the PC?

    This can be done in .Net, or any other scripting solution.

    Running FIM CM 2010, on windows server 2008.

    Thanks!

    Tuesday, March 25, 2014 11:57 AM

All replies

  • On Tue, 25 Mar 2014 11:57:41 +0000, GilShalit wrote:

    How do I build a process to select the certificates issued during a certain time, and download the certificate public keys to files on the PC?

    What is the business need here? Why would you need to do this? Is this for
    encryption certificates, logon certificates, signature certificates?


    Paul Adare - FIM CM MVP
    "The first rule of magic is simple. Don't waste your time waving your
    hands and hoping when a rock or a club will do." -- McCloctnik the Lucid

    Tuesday, March 25, 2014 12:15 PM
  • The certificates need to be processed on an LDAP server on a different domain.  The type of the certificates vary. 

    Thanks,

    Gil

    Wednesday, March 26, 2014 9:12 AM
  • On Wed, 26 Mar 2014 09:12:56 +0000, GilShalit wrote:

    The certificates need to be processed on an LDAP server on a different domain.  The type of the certificates vary.

    You still haven't really provided enough details here for anyone to be of
    much help, but the bottom line is that no, you can't do this from FIM CM
    since the certificate key material is not stored in the FIM CM database.

    Typically just having the public key isn't going to do you much good
    though.

    You may be able to do what you want to do using the cryptography interfaces
    built into Windows against the CA. You can find more information about them
    here:

    http://msdn.microsoft.com/en-us/library/windows/desktop/aa380253%28v=vs.85%29.aspx

    Keep in mind that this forum is for ITPros and not developers. If you have
    questions about developing with these interfaces you'll need to post them
    to one of the MSDN forums.


    Paul Adare - FIM CM MVP
    "Lotus Notes for Dummies" is surely a single page pull out with
    "don't" printed on it. -- Unknown

    Wednesday, March 26, 2014 9:30 AM