xca icon indicating copy to clipboard operation
xca copied to clipboard
verified publisher icon chris2511

Create certificate for domain user using UPN

Open Tuteksik opened this issue 3 years ago • 2 comments

Hi, is any way to create cert for domain user where SAN = domain UPN like [email protected], I have tried put in SAN form something like: otherName:1.3.6.1.4.1.311.20.2.3;UTF8:[email protected] but after certificate creation I have SAN < unsupported >

image

Tuteksik avatar Nov 20 '22 19:11 Tuteksik

Hello, can someone help me with this?

Tuteksik avatar Dec 11 '22 19:12 Tuteksik

for microsoft computer (see symbol $ must be): subjectAltName=otherName:msUPN;UTF8:[email protected], DNS:computerName.example.com

for microsoft user: subjectAltName=otherName:msUPN;UTF8:[email protected], email:[email protected]

if open certificate with crypto shell extensions, you can see for computer certificates: Other Name: Principal [email protected] DNS Name=computerName.example.com

and for user certificates: Other Name: Principal [email protected] RFC822 [email protected]

karlo1941 avatar Jan 31 '23 07:01 karlo1941