As others have mentioned, you can use OpenSSL to generate the request + key, and once you sign the request you'll then need to create a PKCS-12 file containing the certificate and key, then import that into IIS.
Alternatively, you can get IIS/CryptoAPI to generate the request and then sign it with OpenSSL or whatever you're using for your CA. Follow the instructions here, sending the request to your own CA of course: http://www.instantssl.com/ssl-certificate-support/csr_generation/iis_ssl _certificate_5x.html Eric > -----Original Message----- > From: Ronan [mailto:[EMAIL PROTECTED] > Sent: October 21, 2004 04:30 > To: [EMAIL PROTECTED] > Subject: Re: csr for windows server > > no its not there i dont think. > basically what is happening is that im programming an > interface to Active directory and one of the features is a > change password option. > this can only be done obviously over ssl. This is why i need > the certificate generaed so i can sign it with our root CA. > I need to generate the CSR and private key on the server (windows 2000 > advanced) but when i try windows always signs it for me with > its own rootCA ( which is very annoying) is there another way > of doing this...? > ie using openssl > > ronan ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
