Create an inf file with the following content as a template:
[NewRequest]
Subject = "CN=DemoServer.ethz.ch,O=ETH Zurich,C=CH"
KeyLength = 2048
KeySpec = 1
Exportable = False
ProviderName = "Microsoft Software Key Storage Provider"
HashAlgorithm = SHA256
MachineKeySet = True
SMIME = False
UseExistingKeySet = False
RequestType = PKCS10
KeyUsage = 0xA0
Silent = True
[Extensions]
2.5.29.17 = "{text}"
_continue_ = "dns=Demo.ethz.ch&"
_continue_ = "dns=AuchDemo.ethz.ch&"
ATTENTION:
- Please replace the server names in the above example with your own information.
- If the csr file is not created on the system where the certificate is to be used later, the "Exportable" parameter must be set to "True", since it will be necessary to install the certificate first on the Windows system on which the csr file and thus the private key were created.
With "certreq -new Demo.inf Demo.csr" the csr-file is created.