Privileged access management
Microsoft AD RMS
Generate a CSR from a certreq policy file
2min
this section shows how to generate a certificate signing request (csr) from a certreq policy file on the computer where you plan to install microsoft ad rms then, it describes creating a public/private key pair in your windows account profile after you generate the csr file in a later section, the {{k}} issues a signed certificate from the csr, for you to associate with the public/private key pair stored in the windows certificate store create a policy file perform the following steps to create a certreq policy file on the computer where you plan to install microsoft ad rms, open a text editor create a new file, then copy and paste the following content into that file \[version] signature = "$windows nt$" \[newrequest] subject = "cn=adrms" exportable = true keylength = 2048 machinekeyset = true save the file with the inf extension (such as certreq policy inf ) generate a csr perform the following steps to generate a csr from the certreq policy file open either the command prompt or powershell go to the directory with the certreq policy inf file run the following command to generate a certificate signing request (csr) from the certreq policy inf file certreq new q config “your domain com\microsoft adrms" certreq policy inf adrms csr copy the csr file to the storage medium configured on your {{k3}}