To issue the Enrollment Agent certificate, run the IndeedCM.CertEnroll.MsCA.exe utility with /e <service username> <Password> parameter as local administrator.
- <service username> – is the name of service account to use with certification authorities (serviceca),
- <Password> – is the password of that account.
The result should be like that:
CA: msca.demo.local\Indeed-Demo-CA
Certificate has been enrolled successfully.
If the certificate request is to be approved by CA operator, then the utility prompts to acknowledge the request and continue with specification of the request ordinal number and the name of key container:
CA: msca.demo.local\Indeed-Demo-CA
Certificate request is pending.
Request id: 27
Container name: lr-EnrollmentAgent-175d9490-7481-4a29-b567-503d39747354
Please accept request and then install certificate.
To do so, run the IndeedCM.CertEnroll.MsCA.exe utility with /i <service username> <password><requestId> <containerName> parameter, where: After the request is approved, you need to execute a command to install the certificate into storage.
- service username – is the name of service account to use with certification authorities (serviceca)
- password – is the password of the said account
- requestId – is the ordinal number of the certificate request
- containerName – is the name of key container
The result should be like that:
CA: msca.demo.local\Indeed-Demo-CA
Certificate has been installed successfully.
As a result of the utility execution, an Enrollement Agent certificate should appear in the certificate storage of the PC where the Indeed CM server is installed. The said certificate features an exportable private key and configured rights to manage the private key of service user account.
You can also specify the certificate template name (/t parameter) and certification authority (/c) to address (if there are several of them deployed). Default template name is Enrollment Agent. Templates with any names are supported, provided that the latter feature Extended Key Usage Certificate Request Agent.