Save a Certificate Request in a File

  • Article

Applies To: Windows Server 2008

You can prepare a certificate request for use later, or to retain a copy of the request even if is processed at the same time as it is saved.

Users or local Administrators are the minimum group memberships required to complete this procedure. Review the details in "Additional considerations" in this topic.

To save a certificate request in a PKCS #10 or CMC file

  1. Open Internet Explorer.

  2. In Internet Explorer, open https://servername/certsrv, where servername is the name of the Web server running Windows Server 2003 where the certification authority you want to access is located.

  3. Click Request a certificate, and under Advanced certificate request click Create and submit a request to this CA.

  4. Enter any identifying information requested and any other options you require.

  5. Under Additional Options, select the file format you want to use.

  6. In the Full path name field, type a path and file name.

  7. Click Submit. The file is saved to your computer's desktop.

  8. If you are finished using the Certificate Services Web pages, close Internet Explorer.

Additional considerations

  • User certificates can be managed by the user or by an administrator. Certificates issued to a computer or service can only be managed by an administrator or user who has been given the appropriate permissions.

  • The component that enables Web enrollment in this version of Windows is different from the component that enables Web enrollment in Windows Server 2003 and Windows XP. Windows Server 2003 CA Web enrollment pages must be updated to support both Windows Vista® and earlier clients. For more information, see the Microsoft Web site (https://go.microsoft.com/fwlink/?LinkId=63592).

  • You also need to make https://servername a trusted site for Internet Explorer in order to browse for a file on the computer's disk drive. To make https://servername a trusted site, in Internet Explorer, click Tools, point to Internet Options, point to Security, point to Trusted Sites, and then click Sites. Type **https://**servername, and click OK.

Additional reference