Join Log in
Score:0
avatar Server

Submitting CSR to Microsoft CA from linux bash best practice

th flag
researchbruz

Similar questions: https://stackoverflow.com/questions/31283476/submitting-base64-csr-to-a-microsoft-ca-via-curl

The link above presents an answer but it is far too complicated for me.

Below is an example that would work if our CA public and private key are in the same directory, on a linux machine. Lets assume our .cnf is setup correctly and CA has been created. These commands do not work, but close enough to get the idea:

Step 1: generate .csr and .key and from .cnf

openssl req -new -keyout example.key -out example.csr -config example.cnf

Step 2: sign request

openssl x509 -req -in ./example.csr -CA ./ca.cer -CAkey ./ca.key -out example.cer  ...

I would like to complete Step 2 by sending the request to a windows CA from the linux machine. What do I need to do this?

I'm aware this exists for non-domain services, but it is not applicable here. https://social.technet.microsoft.com/wiki/contents/articles/9063.active-directory-certificate-services-ad-cs-network-device-enrollment-service-ndes.aspx

216
0 + 0
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.