tags:

views:

23

answers:

1
Q: 

SUBMIT certificate request - outside domain

Hello

I need to submit a PKCS#10 certificate request to a certificate authority who is outside my domain. This article in MSDN shows a way to submit certificate requests within a network using ICertRequest2 COM object.

hr = CertRequest->Submit( CR_IN_ENCODEANY | CR_IN_FORMATANY, RequestStr,
                          AttributesStr, CAName, &Disp );

where

BSTR CAName = SysAllocString( L"COMPUTERNAME\\CA Name" );

My question is how do i submit my request progrmatically from the client who is outside the Domain.

I don't want to use the Microsoft web enrollment pages, as this needs to be a automated process.

My CA is 2003 Enterprise and client is XP SP3.

Any ideas please?

Thanks

A: 

In general, this can be done in few ways

  1. Manually with some audit procedures between the CA and the participating entity/user

  2. Semi automatically using the MS windows provided web URL/enrolment page, certsrv

  3. Write your own solution, say, a web service to liaise between user and the CA

Raj  2010-10-27 10:53:59

related questions

How to implement password protection for individual files?
Encrypting appSettings in web.config
Usefulness of SQL Server "with encryption" statement
How can I use a key blob generated from Win32 CryptoAPI in my .NET application?
CodeReview: Tiny Encryption Algorithm for arbitrary sized data
Simple encryption implementation in C
Which hard disk encryption software to choose?
Passing untampered data from Flash app to server?
How do I prevent replay attacks?
Is there a best .NET algorithm for credit card encryption?
Encrypt data from users in web applications
How to encrypt one message for multiple recipients?
Two-way password encryption without ssl
What's the answer to this Microsoft PDC challenge?
GPG: How does key signing work and how is it done?
Secure Online Highscore Lists for Non-Web Games
Programmatically encrypting a config-file in .NET
How do I use 3des encryption/decryption in Java?
Encryption in C# Web-Services
Suitable alternative to CryptEncrypt
Can a proxy server cache SSL GETs? If not, would response body encryption suffice?
C# - CryptographicException: Padding is invalid and cannot be removed
How can I encode xml files to xfdl (base64-gzip)?
How do I add SSL to a .net application that uses httplistener - it will *not* be running on IIS
Encrypting Passwords