i'm trying to generate a CSR which includes the microsoft template CA name.
i have tried the below config file but didn't work...any clues ? i want to generate the x509v3 CSR
oid_section = OIDs
[ OIDs ]
# This uses the short name of the template:
certificateTemplateName = 1.3.6.1.4.1.311.21.8.2200605.9715090.14372516.15973785.1368149.102.15135184.3454480
# Use this instead if you need to refer to the template by OID:
# certificateTemplateOID = 1.3.6.1.4.1.311.21.7
[ req ]
prompt = no
string_mask = default
# The size of the keys in bits:
default_bits = 2048
distinguished_name = req_dn
req_extensions = req_ext
[ req_dn ]
# Note that the following are in 'reverse order' to what you'd expect to see in
# Windows and the numbering is irrelevant as long as each line's number differs.
# Domain Components style:
# Server name:
# 2.DC = com
# 1.DC = example
# commonName = Acme Web Server
# Locality style:
# countryName = GB
# stateOrProvinceName = London
# localityName = Letsby Avenue
# organizationName = Acme
# organizationalUnitName = IT Dept
# organizationalUnitName = Web Services
# commonName = Acme Web Server
# Or traditional org style:
countryName = SA
organizationName = Zulfi
organizationalUnitName = IT Dept
2.organizationalUnitName = Web Services
commonName = Zulfi Web Server
[ req_ext ]
#basicConstraints=critical,CA:TRUE
# This requests a certificate using the 'CustomUserOffline' template. Check with the CA for the correct name to use,
# or alternatively comment it out and let the CA apply it:
certificateTemplateName = ASN1:PRINTABLESTRING:TSTZulfi-Code-Signing
subjectAltName = @alt_names
[alt_names]
# To copy the CN (in the case of a DNS name in the CN) use:
# DNS = ${req_dn::commonName}
DNS.1 = www.example.com
DNS.2 = example.com
