Root certificate installation Command.
Certutil.exe –addstore root ‘’certificate name’’
Intermediate certificate installation command.
Certutil.exe –addstore CA ‘’Certificate name”
C:\>certutil.exe -?
402.203.0: 0x80070057 (WIN32: 87): ..CertCli Version
Verbs:
-dump -- Dump configuration information or files
-decodehex -- Decode hexadecimal-encoded file
-decode -- Decode Base64-encoded file
-encode -- Encode file to Base64
-deny -- Deny pending request
-resubmit -- Resubmit pending request
-setattributes -- Set attributes for pending request
-setextension -- Set extension for pending request
-revoke -- Revoke Certificate
-isvalid -- Display current certificate disposition
-getconfig -- Get default configuration string
-ping -- Ping Certificate Services Request interface
-pingadmin -- Ping Certificate Services Admin interface
-CAInfo -- Display CA Information
-ca.cert -- Retrieve the CA's certificate
-ca.chain -- Retrieve the CA's certificate chain
-GetCRL -- Get CRL
-CRL -- Publish new CRLs [or delta CRLs only]
-shutdown -- Shutdown Certificate Services
-installCert -- Install Certification Authority certificate
-renewCert -- Renew Certification Authority certificate
-schema -- Dump Certificate Schema
-view -- Dump Certificate View
-deleterow -- Delete server database row
-backup -- Backup Certificate Services
-backupDB -- Backup Certificate Services database
-backupKey -- Backup Certificate Services certificate and private key
-restore -- Restore Certificate Services
-restoreDB -- Restore Certificate Services database
-restoreKey -- Restore Certificate Services certificate and private ke
-dynamicfilelist -- Display Dynamic File List
-databaselocations -- Display Database Locations
-hashfile -- Generate and display cryptographic hash over a file
-store -- Dump certificate store
-addstore -- Add certificate to store
-delstore -- Delete certificate from store
-verifystore -- Verify certificate in store
-repairstore -- Repair certificate KeyProvInfo in store
-viewstore -- Dump certificate store
-viewdelstore -- Delete certificate from store
-dsPublish -- Publish Certificate or CRL to DS
-Template -- Display Templates
-TemplateCAs -- Display CAs for Template
-CATemplates -- Display Templates for CA
-URLCache -- Display or delete URL cache entries
-pulse -- Pulse autoenrollment events
-MachineInfo -- Display DS machine object information
-DCInfo -- Display DC information
-EntInfo -- Display Enterprise information
-TCAInfo -- Display CA information
-SCInfo -- Display Smart Card information
-verifykeys -- Verify public/private key set
-verify -- Verify certificate, CRL or chain
-sign -- Re-sign CRL or Certificate
-vroot -- Create/Delete Web Virtual Roots and File Shares
-oid -- Display or set ObjectId display name
-error -- Display error code message text
-getreg -- Display registry value
-setreg -- Set registry value
-delreg -- Delete registry value
-ImportKMS -- Import user keys and certificates into server database
r key archival
-ImportCert -- Import a certificate file into the database
-GetKey -- Retrieve archived private key recovery blob
-RecoverKey -- Recover archived private key
-MergePFX -- Merge PFX files
-ConvertEPF -- Convert PFX files to EPF file
-? -- Display this usage message
CertUtil -? -- Display a verb list (command list)
CertUtil -dump -? -- Display help text for the "dump" verb
CertUtil -v -? -- Display all help text for all verbs
CertUtil: -? command completed successfully.
1 comment:
Thanks Kiran, this article helped me today :)
Post a Comment