This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 4%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPG%3C/text%3E%3C/svg%3E)
win10 add a new feature named Isolated User Mode (IUM) Processes, (https://learn.microsoft.com/en-us/windows/win32/procthread/isolated-user-mode--ium--processes).
i want run a process as IUM process, but i don`t know how to apply a digital certificate with IUM oid. like this
any help will be useful to me.
I want to apply for a digital certificate for signing PE files (like EV signing). The enhanced key usage of this digital certificate must contain the OID of IUM, I don't know how to apply for this digital certificate.
增强型密钥用法 is means Extended/Enhanced Key Usage (EKU)
Hello there,
You can use Powershell to get the certificate.
The msPKI-Cert-Template-OID attribute of that object contains the OID you seek.
Get-ADObject ('CN=OID,CN=Public Key Services,CN=Services,'+(Get-ADRootDSE).configurationNamingContext) -Properties msPKI-Cert-Template-OID | Select-Object -ExpandProperty msPKI-Cert-Template-OID
------------------------------------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept it as an answer–
I'm a Chinese and my English is not very good, so maybe my problem description is not very clear, I think you may have misunderstood what I mean.
I want to apply for a digital certificate for signing PE files (like EV signing). The enhanced key usage of this digital certificate must contain the OID of IUM, I don't know how to apply for this digital certificate.