Serial/Thumbprint of Certificate attached to CA?

[Guest]

Hello all,

I was wondering if anyone could tell me if it is possible to find out the
Serial # and/or thumbprint of the certificate that is associated with a
Certification Authority. The problem is we have multiple certificates with
the same name, and since there is a problem with the certificate I get an
"access denied" when I attempt to access it through the CA properties. I
have tried to back up the CA but always get an error, perhaps associated
with the "acess denied" to the certificate itself.

If anyone could adivse on this I would be most appreciative.

Thanks!

 

[Steven L Umbach]

Use the mmc snapin for certificates for user or computer on any computer
that trusts the CA [usually any AD domain computer for an Enterprise CA]
including the CA itself and look in the trusted root certification
authorities for the certificate and you can find the info you need in the
details page of the certificate. You can also check the computer store and
look in the personal/certificates folder to see the certificates for the CA
itself. I am sure there are other ways but that is one that comes to
nd. --- Steve

 

[Guest]

Yes, I have tried that, the only problem is since we have multiple
certificates with the same name there is no way to tell which one is the one
definitive certificate attached to the CA. Is there a way to determine the
serial/thumbprint?

Use the mmc snapin for certificates for user or computer on any computer
that trusts the CA [usually any AD domain computer for an Enterprise CA]
including the CA itself and look in the trusted root certification
authorities for the certificate and you can find the info you need in the
details page of the certificate. You can also check the computer store and
look in the personal/certificates folder to see the certificates for the
CA itself. I am sure there are other ways but that is one that comes to
nd. --- Steve

Hello all,

I was wondering if anyone could tell me if it is possible to find out the
Serial # and/or thumbprint of the certificate that is associated with a
Certification Authority. The problem is we have multiple certificates
with the same name, and since there is a problem with the certificate I
get an "access denied" when I attempt to access it through the CA
properties. I have tried to back up the CA but always get an error,
perhaps associated with the "acess denied" to the certificate itself.

If anyone could adivse on this I would be most appreciative.

Thanks!

 

[Steven L Umbach]

Try logging onto the CA as an administrator and run the command. Certutil -
ca.crt c:\caname.cer to see if that dumps the certificate for you. ---
Steve

Yes, I have tried that, the only problem is since we have multiple
certificates with the same name there is no way to tell which one is the
one definitive certificate attached to the CA. Is there a way to
determine the serial/thumbprint?

Use the mmc snapin for certificates for user or computer on any computer
that trusts the CA [usually any AD domain computer for an Enterprise CA]
including the CA itself and look in the trusted root certification
authorities for the certificate and you can find the info you need in the
details page of the certificate. You can also check the computer store
and look in the personal/certificates folder to see the certificates for
the CA itself. I am sure there are other ways but that is one that comes
to nd. --- Steve

Hello all,

I was wondering if anyone could tell me if it is possible to find out
the Serial # and/or thumbprint of the certificate that is associated
with a Certification Authority. The problem is we have multiple
certificates with the same name, and since there is a problem with the
certificate I get an "access denied" when I attempt to access it through
the CA properties. I have tried to back up the CA but always get an
error, perhaps associated with the "acess denied" to the certificate
itself.

If anyone could adivse on this I would be most appreciative.

Thanks!

 

[Steven L Umbach]

Oops. That should be Certutil -ca.cert c:\caname.cer . --- Steve

Try logging onto the CA as an administrator and run the command.
Certutil - ca.crt c:\caname.cer to see if that dumps the certificate for
you. --- Steve

Yes, I have tried that, the only problem is since we have multiple
certificates with the same name there is no way to tell which one is the
one definitive certificate attached to the CA. Is there a way to
determine the serial/thumbprint?

Use the mmc snapin for certificates for user or computer on any computer
that trusts the CA [usually any AD domain computer for an Enterprise CA]
including the CA itself and look in the trusted root certification
authorities for the certificate and you can find the info you need in
the details page of the certificate. You can also check the computer
store and look in the personal/certificates folder to see the
certificates for the CA itself. I am sure there are other ways but that
is one that comes to nd. --- Steve


<-> wrote in message Hello all,

I was wondering if anyone could tell me if it is possible to find out
the Serial # and/or thumbprint of the certificate that is associated
with a Certification Authority. The problem is we have multiple
certificates with the same name, and since there is a problem with the
certificate I get an "access denied" when I attempt to access it
through the CA properties. I have tried to back up the CA but always
get an error, perhaps associated with the "acess denied" to the
certificate itself.

If anyone could adivse on this I would be most appreciative.

Thanks!