Open the Output.txt file, and then search for errors. To follow this step, you must have the Certutil command-line tool installed. On the client computer, open a Command Prompt window.Īt the command prompt, type the following command to send the command output to a file that is named Output.txt: certutil -v -urlfetch -verify serverssl.cer > output.txt On the domain controller, use the Certificates snap-in to export the SSL certificate to a file that is named Serverssl.cer.Ĭopy the Serverssl.cer file to the client computer. To determine whether the certificate is valid, follow these steps: The certificate chain is valid on the client computer. To verify that the key is available, use the certutil -verifykeys command. The associated private key is available on the domain controller. The enhanced key usage extension includes the Server Authentication object identifier (1.3.6.1.5.5.7.3.1).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |