archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/cryptoapi/pkitrust/initpki/certs/makesst.cmd

814 lines
40 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. @echo off
  3. rem
  4. rem !!!!!! dont forget that there MUST be a property usage too !!!!!!
  5. rem
  7. set l_SAUTH=1.3.6.1.5.5.7.3.1
  8. set l_CAUTH=1.3.6.1.5.5.7.3.2
  9. set l_CSIGN=1.3.6.1.5.5.7.3.3
  10. set l_EMAIL=1.3.6.1.5.5.7.3.4
  11. set l_IPTUNNEL=1.3.6.1.5.5.7.3.6
  12. set l_IPUSER=1.3.6.1.5.5.7.3.7
  13. set l_TSTMP=1.3.6.1.5.5.7.3.8
  14. set l_OCSP=1.3.6.1.5.5.7.3.9
  15. set l_SVRGT=1.3.6.1.4.1.311.10.3.3
  16. set l_NETSC=2.16.840.1.113730.4.1
  17. set l_IPSEC=1.3.6.1.5.5.8.2.2
  18. set l_EFS=1.3.6.1.4.1.311.10.3.4
  21. set l_DISABLE=1.3.6.1.4.1.311.10.4.1
  23. set l_CMGR=certmgr -add -all -c
  24. set l_CMGRCRL=certmgr -add -all -crl
  26. set l_AUTHROOTSTOREFILE=authroots.sst
  27. set l_UPDROOTSTOREFILE=updroots.sst
  28. set l_DELROOTSTOREFILE=delroots.sst
  29. set l_ROOTSTOREFILE=roots.sst
  30. set l_CASTOREFILE=cas.sst
  31. set l_DISALLOWSTOREFILE=disallow.sst
  33. rem echo .
  34. rem echo . checking out *.sst
  35. rem echo .
  37. rem %out *.sst
  39. if exist %l_AUTHROOTSTOREFILE% del %l_AUTHROOTSTOREFILE%
  40. if exist %l_UPDROOTSTOREFILE% del %l_UPDROOTSTOREFILE%
  41. if exist %l_DELROOTSTOREFILE% del %l_DELROOTSTOREFILE%
  42. if exist %l_ROOTSTOREFILE% del %l_ROOTSTOREFILE%
  43. if exist %l_CASTOREFILE% del %l_CASTOREFILE%
  44. if exist %l_DISALLOWSTOREFILE% del %l_DISALLOWSTOREFILE%
  47. rem --------------------------------------------------------------------------
  48. rem *** Delete Roots (June 2002) ***
  49. rem --------------------------------------------------------------------------
  51. rem *** CertiPoste ***
  52. rem these certs were added 7/7/99 and will expire on 6/24/2018
  54. set l_NAME=Certiposte Classe A Personne
  55. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" certip\certip1.cer %l_DELROOTSTOREFILE%
  57. set l_NAME=Certiposte Serveur
  58. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" certip\sagemroot.crt %l_DELROOTSTOREFILE%
  61. rem *** Viacode ***
  62. rem these certs were added 7/12/99
  64. set l_NAME=ViaCode Certification Authority
  65. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" Viacode\root.crt %l_DELROOTSTOREFILE%
  67. rem *** SwissKey ***
  68. rem these certs were added 7/12/99
  70. set l_NAME=Swisskey Root CA
  71. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SwissKey\root.cer %l_DELROOTSTOREFILE%
  74. rem --------------------------------------------------------------------------
  75. rem *** AUTO ROOT UPDATE (June 2002) ***
  76. rem --------------------------------------------------------------------------
  78. rem
  79. rem Baltimore
  80. rem
  82. set l_NAME=Baltimore CyberTrust Root
  83. %l_CMGR% -eku "%l_SAUTH%" -name "%l_NAME%" baltimore\cybertrust.cer %l_UPDROOTSTOREFILE%
  86. rem
  87. rem eSign Australia
  88. rem
  90. set l_NAME=eSign Australia: Gatekeeper Root CA
  91. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%,%l_TSTMP%" -name "%l_NAME%" esign\gatekeeper.cer %l_UPDROOTSTOREFILE%
  93. set l_NAME=eSign Australia: Primary Utility Root CA
  94. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%,%l_TSTMP%" -name "%l_NAME%" esign\utility.cer %l_UPDROOTSTOREFILE%
  96. set l_NAME=eSign Australia: eSign Imperito Primary Root CA
  97. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%,%l_TSTMP%" -name "%l_NAME%" esign\imperito.cer %l_UPDROOTSTOREFILE%
  99. rem
  100. rem Entrust.net
  101. rem
  103. set l_NAME=Entrust.net Global Client Certification Authority
  104. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" entrust\globalclient.cer %l_UPDROOTSTOREFILE%
  106. set l_NAME=Entrust.net Global Secure Server Certification Authority
  107. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_CSIGN%,%l_EMAIL%" -name "%l_NAME%" entrust\globalserver.cer %l_UPDROOTSTOREFILE%
  110. rem
  111. rem KMD-CA
  112. rem
  114. set l_NAME=KMD-CA Server
  115. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" kmd\server.cer %l_UPDROOTSTOREFILE%
  117. set l_NAME=KMD-CA K Person
  118. %l_CMGR% -eku "%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" kmd\person.cer %l_UPDROOTSTOREFILE%
  120. set l_NAME=KMD-CA Root
  121. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" kmd\root.cer %l_UPDROOTSTOREFILE%
  124. rem --------------------------------------------------------------------------
  125. rem *** AUTO ROOT UPDATE (June 2001) ***
  126. rem --------------------------------------------------------------------------
  128. rem
  129. rem Irish Post Office
  130. rem
  132. set l_NAME=Post.Trust Root CA
  133. %l_CMGR% -eku "%l_CSIGN%,%l_SAUTH%,%l_CAUTH%,%l_EMAIL%,%l_IPSEC%,%l_TSTMP%,%l_OCSP%" -name "%l_NAME%" postie\root_cert.crt %l_UPDROOTSTOREFILE%
  135. rem
  136. rem Entrust
  137. rem
  139. set l_NAME=Entrust.net Certification Authority (2048)
  140. %l_CMGR% -eku "%l_CSIGN%,%l_SAUTH%,%l_CAUTH%,%l_EMAIL%,%l_IPSEC%,%l_TSTMP%" -name "%l_NAME%" entrust\Entrust_2048CA.cer %l_UPDROOTSTOREFILE%
  142. set l_NAME=Entrust.net Client Certification Authority
  143. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" entrust\Entrust_clientCA.cer %l_UPDROOTSTOREFILE%
  145. rem
  146. rem Verisign
  147. rem
  149. set l_NAME=VeriSign Class 1 Public Primary Certification Authority - G3
  150. %l_CMGR% -eku "%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" verisign\c1pcag3v2.cer %l_UPDROOTSTOREFILE%
  152. set l_NAME=VeriSign Class 2 Public Primary Certification Authority - G3
  153. %l_CMGR% -eku "%l_CSIGN%,%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" verisign\c2pcag3v2.cer %l_UPDROOTSTOREFILE%
  155. set l_NAME=VeriSign Class 3 Public Primary Certification Authority - G3
  156. %l_CMGR% -eku "%l_CSIGN%,%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" verisign\c3pcag3v2.cer %l_UPDROOTSTOREFILE%
  158. set l_NAME=VeriSign Class 4 Public Primary Certification Authority - G3
  159. %l_CMGR% -eku "%l_CSIGN%,%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" verisign\c4pcag3v2.cer %l_UPDROOTSTOREFILE%
  163. rem --------------------------------------------------------------------------------------------------------------
  164. rem *** DISALLOW ***
  165. rem --------------------------------------------------------------------------------------------------------------
  167. rem Fraudulent Commercial Publisher Certificates issued by VeriSign
  168. set l_NAME=Fraudulent, NOT Microsoft
  169. %l_CMGR% -name "%l_NAME%" disallow\vs_mspub.cer %l_DISALLOWSTOREFILE%
  170. %l_CMGR% -name "%l_NAME%" disallow\vs_mspub2.cer %l_DISALLOWSTOREFILE%
  174. rem --------------------------------------------------------------------------------------------------------------
  175. rem *** VERISIGN ***
  176. rem --------------------------------------------------------------------------------------------------------------
  178. rem VeriSign certs to flush...
  180. rem This is hash 0x4b281266, old RSA Secure Server CA, expires 12/31/99
  181. rem set l_NAME=VeriSign/RSA Secure Server CA
  182. rem %l_CMGR% -eku "%l_SAUTH%" -name "%l_NAME%" rsa\rsa-ssca.crt %l_AUTHROOTSTOREFILE%
  184. rem This is hash 0x0884a5f8, old Class 1 Public PCA, expires 12/31/99
  185. rem set l_NAME=VeriSign Class 1 Primary CA
  186. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%" -name "%l_NAME%" verisign\class1-v0.509 %l_AUTHROOTSTOREFILE%
  188. rem This is hash 0x127046ed, old Class 1 Public PCA, expires 1/7/2004
  189. rem set l_NAME=VeriSign Class 1 Primary CA
  190. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%" -name "%l_NAME%" verisign\class1-v1.509 %l_AUTHROOTSTOREFILE%
  192. rem This is hash , old Class 4 Public PCA, expires 12/31/1999
  193. rem set l_NAME=VeriSign Class 4 Primary CA
  194. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%,%l_SAUTH%" -name "%l_NAME%" verisign\class4-v1.509 %l_AUTHROOTSTOREFILE%
  196. set l_NAME=VeriSign Commercial Software Publishers CA
  197. %l_CMGR% -eku "%l_EMAIL%,%l_CSIGN%" -name "%l_NAME%" verisign\mscom2004.509 %l_AUTHROOTSTOREFILE%
  199. rem This is hash 0x0fae155f, old Commercial softpub cert, expires 12/31/99
  200. rem We have to continue shipping this root because certs issued off
  201. rem of it use AKI: Issuer & serial number
  203. set l_NAME=VeriSign Commercial Software Publishers CA
  204. %l_CMGR% -eku "%l_EMAIL%,%l_CSIGN%" -name "%l_NAME%" verisign\mscom1999.509 %l_AUTHROOTSTOREFILE%
  207. rem Certificate Revocation List (CRL) for the above VeriSign CA
  208. %l_CMGRCRL% verisign\verisignpub.crl %l_CASTOREFILE%
  211. set l_NAME=VeriSign Individual Software Publishers CA
  212. %l_CMGR% -eku "%l_EMAIL%,%l_CSIGN%" -name "%l_NAME%" verisign\msind2004.509 %l_AUTHROOTSTOREFILE%
  214. rem This is hash 0x438d4e9c, old Individual softpub cert, expires 12/31/99
  215. rem We have to continue shipping this root because certs issued off
  216. rem of it use AKI: Issuer & serial number
  218. set l_NAME=VeriSign Individual Software Publishers CA
  219. %l_CMGR% -eku "%l_EMAIL%,%l_CSIGN%" -name "%l_NAME%" verisign\msind1999.509 %l_AUTHROOTSTOREFILE%
  221. set l_NAME=VeriSign Class 1 Primary CA
  222. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%" -name "%l_NAME%" verisign\class1-v2.509 %l_AUTHROOTSTOREFILE%
  224. rem This is the VS Class 2 PCA; class2-v1 and class2-v2 are duplicates,
  225. rem only need one of them. Hash 0xbbfab727
  226. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%" -name "%l_NAME%" verisign\class2-v1.509 %l_AUTHROOTSTOREFILE%
  227. set l_NAME=VeriSign Class 2 Primary CA
  228. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%" -name "%l_NAME%" verisign\class2-v2.509 %l_AUTHROOTSTOREFILE%
  230. rem This is the VS Class 3 PCA; class3-v1 and class3-v2 are duplicates,
  231. rem only need one of them. Hash 0x4d5f2ab4
  232. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%,%l_SAUTH%" -name "%l_NAME%" verisign\class3-v1.509 %l_AUTHROOTSTOREFILE%
  233. set l_NAME=VeriSign Class 3 Primary CA
  234. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%,%l_SAUTH%" -name "%l_NAME%" verisign\class3-v2.509 %l_AUTHROOTSTOREFILE%
  236. rem set l_NAME=VeriSign/RSA Commercial CA
  237. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_SAUTH%" -name "%l_NAME%" rsa\rsa-cca.crt %l_AUTHROOTSTOREFILE%
  239. set l_NAME=VeriSign/RSA Secure Server CA
  240. %l_CMGR% -eku "%l_SAUTH%" -name "%l_NAME%" rsa\sscav2.509 %l_AUTHROOTSTOREFILE%
  242. rem New certs as of 5/20/98
  244. set l_NAME=VeriSign Class 1 Primary CA
  245. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%" -name "%l_NAME%" verisign\c1pca_g2.cer %l_AUTHROOTSTOREFILE%
  247. set l_NAME=VeriSign Class 2 Primary CA
  248. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%" -name "%l_NAME%" verisign\c2pca_g2.cer %l_AUTHROOTSTOREFILE%
  250. set l_NAME=VeriSign Class 3 Primary CA
  251. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%,%l_SAUTH%" -name "%l_NAME%" verisign\c3pca_g2.cer %l_AUTHROOTSTOREFILE%
  253. set l_NAME=VeriSign Class 4 Primary CA
  254. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%,%l_SAUTH%" -name "%l_NAME%" verisign\c4pca_g2.cer %l_AUTHROOTSTOREFILE%
  256. rem ------ this is the "us" cert -- we don't want to ship this!
  257. rem ------ set l_NAME=VeriSign Online Revocation Status Service
  258. rem ------ %l_CMGR% -name "%l_NAME%" verisign\crlsign-v1.509 %l_AUTHROOTSTOREFILE%
  260. set l_NAME=VeriSign Time Stamping CA
  261. %l_CMGR% -eku "%l_TSTMP%" -name "%l_NAME%" verisign\timeroot.509 %l_ROOTSTOREFILE%
  263. rem This is the VS Class 1 Intermediate
  264. rem %l_CMGR% verisign\class1iv1.509 %l_CASTOREFILE%
  266. rem This is the VS Class 2 Intermediate
  267. rem %l_CMGR% verisign\class2iv1.509 %l_CASTOREFILE%
  269. rem Replacing the VS Class 1 intermediate with one expiring on 2008
  270. %l_CMGR% verisign\c1i_2008.cer %l_CASTOREFILE%
  272. rem This is the VS Class 2 Intermediate
  273. rem Replacing the VS Class 2 intermediate with one expiring on 2004
  274. %l_CMGR% verisign\c2i_2004.cer %l_CASTOREFILE%
  276. rem New VS certs as of 7/7/99
  278. set l_NAME=VeriSign Class 1 Primary CA
  279. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%" -name "%l_NAME%" verisign\C1PCAG2v2.cer %l_AUTHROOTSTOREFILE%
  281. set l_NAME=VeriSign Class 2 Primary CA
  282. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%" -name "%l_NAME%" verisign\C2PCAG2v2.cer %l_AUTHROOTSTOREFILE%
  284. set l_NAME=VeriSign Class 3 Primary CA
  285. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%,%l_SAUTH%" -name "%l_NAME%" verisign\C3PCAG2v2.cer %l_AUTHROOTSTOREFILE%
  287. set l_NAME=VeriSign Class 4 Primary CA
  288. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%,%l_SAUTH%" -name "%l_NAME%" verisign\C4PCAG2v2.cer %l_AUTHROOTSTOREFILE%
  290. set l_NAME=VeriSign Class 1 Public Primary CA
  291. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%" -name "%l_NAME%" verisign\PCA1_v4.cer %l_AUTHROOTSTOREFILE%
  293. set l_NAME=VeriSign Class 2 Public Primary CA
  294. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%" -name "%l_NAME%" verisign\PCA2_v4.cer %l_AUTHROOTSTOREFILE%
  296. set l_NAME=VeriSign Class 3 Public Primary CA
  297. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_CSIGN%,%l_SAUTH%" -name "%l_NAME%" verisign\PCA3_v4.cer %l_AUTHROOTSTOREFILE%
  299. rem VS SGC x-cert to fix SP6 SGC problem
  300. %l_CMGR% verisign\c3i_2004.cer %l_CASTOREFILE%
  304. rem --------------------------------------------------------------------------------------------------------------
  305. rem *** MICROSOFT ***
  306. rem --------------------------------------------------------------------------------------------------------------
  308. set l_NAME=Microsoft Authenticode(tm) Root
  309. %l_CMGR% -eku "%l_EMAIL%,%l_CSIGN%" -name "%l_NAME%" msft\msroot99.cer %l_ROOTSTOREFILE%
  311. set l_NAME=Microsoft Timestamp Root
  312. %l_CMGR% -eku "%l_TSTMP%" -name "%l_NAME%" msft\hawking.cer %l_ROOTSTOREFILE%
  314. rem SGC root removed (Win2k 387794 & WinSE 3715)
  315. rem This is the MS Root for Server-Gated Crypto (SGC)
  316. rem set l_NAME=Microsoft Root SGC Authority
  317. rem %l_CMGR% -eku "%l_SAUTH%,%l_SVRGT%,%l_NETSC%" -name "%l_NAME%" msft\sgcroot.crt %l_ROOTSTOREFILE%
  319. rem
  320. rem On 12/3/01 removed the SGC CA certs
  321. rem
  322. rem This is the SGC intermediate certificate
  323. rem %l_CMGR% -eku "%l_SAUTH%,%l_SVRGT%,%l_NETSC%" msft\sgc_ca.crt %l_CASTOREFILE%
  325. rem This is the MS Root Authority (calling it the WHQL root is a misnomer).
  326. rem It expires in 2020
  327. set l_NAME=Microsoft Root Authority
  328. %l_CMGR% -name "%l_NAME%" msft\whqlroot.cer %l_ROOTSTOREFILE%
  330. rem This is the MS Root Authority generated in 2001 with a bit length of 4096
  331. rem It expires in 2021
  332. set l_NAME=Microsoft Root Certificate Authority
  333. %l_CMGR% -name "%l_NAME%" msft\msroot01.cer %l_ROOTSTOREFILE%
  335. rem This is the WHQL intermediate cert (chains off the MS Root Authority),
  336. rem used for things like Memphis driver signing, MS publishing, etc.
  337. rem
  338. rem On 9-10-02 replaced whqlint.cer with whqlint_bc.cer
  339. rem whqlint_bc.cer has a basic constraints extension which whqlint.cer doesn't
  340. set l_NAME=Microsoft Windows Hardware Compatibility
  341. %l_CMGR% msft\whqlint_bc.cer %l_CASTOREFILE%
  343. rem %l_CMGR% msft\mstemp.cer %l_CASTOREFILE%
  345. %l_CMGR% test\mstest.cer %l_CASTOREFILE%
  348. rem --------------------------------------------------------------------------------------------------------------
  349. rem *** GTE ***
  350. rem --------------------------------------------------------------------------------------------------------------
  352. rem this is an old GTE root, hash 0x129c55b6, expires 12/31/99
  353. rem we're keeping it this go-round while GTE migrates to a new key.
  355. rem set l_NAME=GTE CyberTrust Root
  356. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_SAUTH%" -name "%l_NAME%" gte\ct_root.cer %l_AUTHROOTSTOREFILE%
  358. rem this is the new GTE root, hash, expires 4/4/2004
  359. set l_NAME=GTE CyberTrust Root
  360. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_SAUTH%" -name "%l_NAME%" gte\ct200404.cer %l_AUTHROOTSTOREFILE%
  362. set l_NAME=GTE CyberTrust Root
  363. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_SAUTH%" -name "%l_NAME%" gte\ct200602.cer %l_AUTHROOTSTOREFILE%
  365. set l_NAME=GTE CyberTrust Global Root
  366. %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_SAUTH%,%l_CSIGN%" -name "%l_NAME%" gte\ct201808.cer %l_AUTHROOTSTOREFILE%
  368. rem
  369. rem On 12/3/01 removed the SGC CA certs
  370. rem
  371. rem GTE SGC bridge cert
  372. rem %l_CMGR% gte\gtebridge.cer %l_CASTOREFILE%
  375. rem --------------------------------------------------------------------------------------------------------------
  376. rem *** ATT ***
  377. rem --------------------------------------------------------------------------------------------------------------
  379. rem These certificates (0x7c76ed02 and 0x8dd3f0c5) expire in 1/16/01 and 12/31/99; we're not carrying any AT&T root certs any more (at least, they haven't replaced any for NT5 B2)
  380. rem set l_NAME=ATT Certificate Services
  381. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_SAUTH%" -name "%l_NAME%" att\att.crt %l_AUTHROOTSTOREFILE%
  382. rem set l_NAME=ATT Directory Services
  383. rem %l_CMGR% -eku "%l_EMAIL%,%l_CAUTH%,%l_SAUTH%" -name "%l_NAME%" att\attdir.crt %l_AUTHROOTSTOREFILE%
  385. rem --------------------------------------------------------------------------------------------------------------
  386. rem *** THAWTE ***
  387. rem --------------------------------------------------------------------------------------------------------------
  389. rem this is an old Thawte premium server root, hash 0xd1dc53dc, expires 7/27/98
  390. rem %l_CMGR% -eku "%l_SAUTH%,%l_CSIGN%" thawte\spca1998.crt %l_AUTHROOTSTOREFILE%
  391. rem this is an old Thawte server CA root, hash 0x9008b1f0, expires 7/27/98
  392. rem %l_CMGR% -eku "%l_SAUTH%,%l_CSIGN%" thawte\sca1998.crt %l_AUTHROOTSTOREFILE%
  394. set l_NAME=Thawte Personal Basic CA
  395. %l_CMGR% -eku "%l_CAUTH%,%l_EMAIL%,%l_CSIGN%" -name "%l_NAME%" thawte\pbca2020.crt %l_AUTHROOTSTOREFILE%
  396. set l_NAME=Thawte Personal Premium CA
  397. %l_CMGR% -eku "%l_CAUTH%,%l_EMAIL%,%l_CSIGN%" -name "%l_NAME%" thawte\ppca2020.crt %l_AUTHROOTSTOREFILE%
  398. set l_NAME=Thawte Personal Freemail CA
  399. %l_CMGR% -eku "%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" thawte\pfca2020.crt %l_AUTHROOTSTOREFILE%
  400. set l_NAME=Thawte Server CA
  401. %l_CMGR% -eku "%l_SAUTH%,%l_CSIGN%" -name "%l_NAME%" thawte\sca2020.crt %l_AUTHROOTSTOREFILE%
  402. set l_NAME=Thawte Premium Server CA
  403. %l_CMGR% -eku "%l_SAUTH%,%l_CSIGN%" -name "%l_NAME%" thawte\spca2020.crt %l_AUTHROOTSTOREFILE%
  404. set l_NAME=Thawte Timestamping CA
  405. %l_CMGR% -eku "%l_TSTMP%" -name "%l_NAME%" thawte\ts2020.cer %l_AUTHROOTSTOREFILE%
  407. rem
  408. rem On 12/3/01 removed the SGC CA certs
  409. rem
  410. rem Thawte SGC bridge cert
  411. rem %l_CMGR% thawte\sgc1.cer %l_CASTOREFILE%
  413. rem
  414. rem On 12/3/01 removed the SGC CA certs
  415. rem
  416. rem Thawte SGC premium bridge cert
  417. rem %l_CMGR% thawte\prem_sgc.cer %l_CASTOREFILE%
  420. rem --------------------------------------------------------------------------------------------------------------
  421. rem *** KEYWITNESS ***
  422. rem --------------------------------------------------------------------------------------------------------------
  424. rem Keywitness is out of business. Do not add this CA back into the product in the future.
  426. rem *** KeyWitness removed on 7/7/99 ***
  428. rem this is the old KeyWitness root, hash 0xBDCD5DEA, expires 5/6/99
  429. rem %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" other\kwitness.crt %l_AUTHROOTSTOREFILE%
  431. rem this is the new KeyWitness root, hash 0x06d81263, expires 5/5/2004
  432. rem set l_NAME=KeyWitness Global 2048 Root
  433. rem %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" -name "%l_NAME%" other\kw2004.cer %l_AUTHROOTSTOREFILE%
  435. rem --------------------------------------------------------------------------------------------------------------
  436. rem *** MCI ***
  437. rem --------------------------------------------------------------------------------------------------------------
  439. rem This is an old MCI root cert, hash 0x6357d33d, expires 7/16/98
  440. rem %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%" other\mcimall.crt %l_AUTHROOTSTOREFILE%
  443. rem --------------------------------------------------------------------------------------------------------------
  444. rem *** Correos ***
  445. rem --------------------------------------------------------------------------------------------------------------
  447. rem these certs are added 7/7/99 and will expire on 6/24/2018
  448. set l_NAME=SERVICIOS DE CERTIFICACION - A.N.C.
  449. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" Correos\ca.crt %l_AUTHROOTSTOREFILE%
  451. rem --------------------------------------------------------------------------------------------------------------
  452. rem *** Digital Signature Trust ***
  453. rem --------------------------------------------------------------------------------------------------------------
  455. rem these certs are added 7/7/99
  456. set l_NAME=DST (ANX Network) CA
  457. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\ANX.cer %l_AUTHROOTSTOREFILE%
  459. set l_NAME=DSTCA E1
  460. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\DSTCAE1.cer %l_AUTHROOTSTOREFILE%
  462. set l_NAME=DSTCA E2
  463. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\DSTCAE2.cer %l_AUTHROOTSTOREFILE%
  465. set l_NAME=DST-Entrust GTI CA
  466. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\DSTEntrst.cer %l_AUTHROOTSTOREFILE%
  468. set l_NAME=DST RootCA X1
  469. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\DSTXCA1.cer %l_AUTHROOTSTOREFILE%
  471. set l_NAME=DST RootCA X2
  472. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\DSTXCA2.cer %l_AUTHROOTSTOREFILE%
  474. set l_NAME=Xcert EZ by DST
  475. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\X3CER.cer %l_AUTHROOTSTOREFILE%
  477. set l_NAME=DST (National Retail Federation) RootCA
  478. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\NRF.cer %l_AUTHROOTSTOREFILE%
  480. set l_NAME=DST (United Parcel Service) RootCA
  481. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\UPS.cer %l_AUTHROOTSTOREFILE%
  483. rem these certs are added 7/12/99
  484. set l_NAME=DST (ABA.ECOM) CA
  485. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\ABACER.cer %l_AUTHROOTSTOREFILE%
  487. set l_NAME=DST (Baltimore EZ) CA
  488. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DigSigT\baltimore.cer %l_AUTHROOTSTOREFILE%
  490. rem --------------------------------------------------------------------------------------------------------------
  491. rem *** Equifax ***
  492. rem --------------------------------------------------------------------------------------------------------------
  494. rem these certs are added 7/7/99
  495. set l_NAME=Equifax Secure eBusiness CA-1
  496. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%,%l_CSIGN%" -name "%l_NAME%" Equifax\ebus_ca1.cer %l_AUTHROOTSTOREFILE%
  498. set l_NAME=Equifax Secure eBusiness CA-2
  499. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%,%l_CSIGN%" -name "%l_NAME%" Equifax\ebus_ca2.cer %l_AUTHROOTSTOREFILE%
  501. set l_NAME=Equifax Secure Global eBusiness CA-1
  502. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%,%l_CSIGN%" -name "%l_NAME%" Equifax\gebus_ca1.cer %l_AUTHROOTSTOREFILE%
  504. set l_NAME=Equifax Secure Certificate Authority
  505. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%,%l_CSIGN%" -name "%l_NAME%" Equifax\sec_ca.cer %l_AUTHROOTSTOREFILE%
  507. rem --------------------------------------------------------------------------------------------------------------
  508. rem *** First Data Digital Certificates Inc. ***
  509. rem --------------------------------------------------------------------------------------------------------------
  511. rem these certs are added 7/7/99
  512. set l_NAME=First Data Digital Certificates Inc. Certification Authority
  513. %l_CMGR% -name "%l_NAME%" FDC\ca.cer %l_AUTHROOTSTOREFILE%
  515. rem --------------------------------------------------------------------------------------------------------------
  516. rem *** FNMT ***
  517. rem --------------------------------------------------------------------------------------------------------------
  519. rem these certs are added 7/7/99
  520. set l_NAME=Fabrica Nacional de Moneda y Timbre
  521. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" FNMT\fnmt.cer %l_AUTHROOTSTOREFILE%
  523. rem --------------------------------------------------------------------------------------------------------------
  524. rem *** GlobalSign ***
  525. rem --------------------------------------------------------------------------------------------------------------
  527. rem these certs are added 7/7/99
  528. set l_NAME=GlobalSign Root CA
  529. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%,%l_CSIGN%,%l_TSTMP%" -name "%l_NAME%" GlobalS\root.cer %l_AUTHROOTSTOREFILE%
  531. rem
  532. rem On 12/3/01 removed the SGC CA certs
  533. rem
  534. rem GlobalSign SGC bridge cert
  535. rem %l_CMGR% GlobalS\gbridge.cer %l_CASTOREFILE%
  537. rem --------------------------------------------------------------------------------------------------------------
  538. rem *** Japan Certification Services ***
  539. rem --------------------------------------------------------------------------------------------------------------
  541. rem these certs are added 7/7/99
  542. set l_NAME=Japan Certification Services, Inc. SecureSign RootCA1
  543. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" JCS\jcsca1.der %l_AUTHROOTSTOREFILE%
  545. set l_NAME=Japan Certification Services, Inc. SecureSign RootCA2
  546. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" JCS\jcsca2.der %l_AUTHROOTSTOREFILE%
  548. set l_NAME=Japan Certification Services, Inc. SecureSign RootCA3
  549. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" JCS\jcsca3.der %l_AUTHROOTSTOREFILE%
  551. rem --------------------------------------------------------------------------------------------------------------
  552. rem *** KeyMail ***
  553. rem --------------------------------------------------------------------------------------------------------------
  555. rem these certs are added 7/7/99
  556. set l_NAME=KeyMail PTT Post Root CA
  557. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" KeyMail\PTTCA.CRT %l_AUTHROOTSTOREFILE%
  559. rem --------------------------------------------------------------------------------------------------------------
  560. rem *** National Association of Mexican Notary ***
  561. rem --------------------------------------------------------------------------------------------------------------
  563. rem these certs are added 7/7/99
  564. set l_NAME=Autoridad Certificadora de la Asociacion Nacional del Notariado
  565. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" NAMx\ANNM.cer %l_AUTHROOTSTOREFILE%
  567. set l_NAME=Autoridad Certificadora del Colegio Nacional de Correduria Publica Mexicana, A.C.
  568. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" NAMx\CNCPM.cer %l_AUTHROOTSTOREFILE%
  570. rem --------------------------------------------------------------------------------------------------------------
  571. rem *** Saunalahden Serveri ***
  572. rem --------------------------------------------------------------------------------------------------------------
  574. rem these certs are added 7/7/99
  575. set l_NAME=Saunalahden Serveri CA
  576. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SFS\goldnew.cer %l_AUTHROOTSTOREFILE%
  578. set l_NAME=Saunalahden Serveri CA
  579. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SFS\silvernew.cer %l_AUTHROOTSTOREFILE%
  581. rem --------------------------------------------------------------------------------------------------------------
  582. rem *** Societa Interbancaria per l'Automazione ***
  583. rem --------------------------------------------------------------------------------------------------------------
  585. rem these certs are added 7/7/99
  586. set l_NAME=Societa Interbancaria per l'Automazione SIA Secure Client CA
  587. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SIA\seccli.der %l_AUTHROOTSTOREFILE%
  589. rem this cert is added 7/12/99
  590. set l_NAME=Societa Interbancaria per l'Automazione SIA Secure Server CA
  591. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SIA\secsrv.der %l_AUTHROOTSTOREFILE%
  593. rem --------------------------------------------------------------------------------------------------------------
  594. rem *** Valicert ***
  595. rem --------------------------------------------------------------------------------------------------------------
  597. rem these certs are added 7/7/99
  598. set l_NAME=ValiCert Class 1 Policy Validation Authority
  599. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" ValiCert\class1.cer %l_AUTHROOTSTOREFILE%
  601. set l_NAME=ValiCert Class 2 Policy Validation Authority
  602. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" ValiCert\class2.cer %l_AUTHROOTSTOREFILE%
  604. set l_NAME=ValiCert Class 3 Policy Validation Authority
  605. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" ValiCert\class3.cer %l_AUTHROOTSTOREFILE%
  607. rem --------------------------------------------------------------------------------------------------------------
  608. rem *** Belgacom ***
  609. rem --------------------------------------------------------------------------------------------------------------
  611. rem these certs are added 7/12/99
  612. set l_NAME=Belgacom E-Trust Primary CA
  613. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" Belgacom\primary.crt %l_AUTHROOTSTOREFILE%
  615. rem --------------------------------------------------------------------------------------------------------------
  616. rem *** CertiSign ***
  617. rem --------------------------------------------------------------------------------------------------------------
  619. rem these certs are added 7/12/99
  620. set l_NAME=Certisign Autoridade Certificadora AC1S
  621. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertiSign\AC1S.der %l_AUTHROOTSTOREFILE%
  623. set l_NAME=Certisign Autoridade Certificadora AC2
  624. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertiSign\AC2.der %l_AUTHROOTSTOREFILE%
  626. set l_NAME=Certisign Autoridade Certificadora AC3S
  627. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertiSign\AC3S.der %l_AUTHROOTSTOREFILE%
  629. set l_NAME=Certisign Autoridade Certificadora AC4
  630. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertiSign\AC4.der %l_AUTHROOTSTOREFILE%
  632. rem --------------------------------------------------------------------------------------------------------------
  633. rem *** CertPlus ***
  634. rem --------------------------------------------------------------------------------------------------------------
  636. rem these certs are added 7/12/99
  637. set l_NAME=CertPlus Class 1 Primary CA
  638. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertPlus\class1.cer %l_AUTHROOTSTOREFILE%
  640. set l_NAME=CertPlus Class 2 Primary CA
  641. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertPlus\class2.cer %l_AUTHROOTSTOREFILE%
  643. set l_NAME=CertPlus Class 3 Primary CA
  644. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertPlus\class3.cer %l_AUTHROOTSTOREFILE%
  646. set l_NAME=CertPlus Class 3P Primary CA
  647. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertPlus\class3p.cer %l_AUTHROOTSTOREFILE%
  649. set l_NAME=CertPlus Class 3TS Primary CA
  650. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" CertPlus\class3ts.cer %l_AUTHROOTSTOREFILE%
  652. rem --------------------------------------------------------------------------------------------------------------
  653. rem *** Deutsche Telekom ***
  654. rem --------------------------------------------------------------------------------------------------------------
  656. rem these certs are added 7/12/99
  657. set l_NAME=Deutsche Telekom Root CA 1
  658. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DeutscheT\DTroot1.cer %l_AUTHROOTSTOREFILE%
  660. set l_NAME=Deutsche Telekom Root CA 2
  661. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" DeutscheT\DTroot2.cer %l_AUTHROOTSTOREFILE%
  663. rem --------------------------------------------------------------------------------------------------------------
  664. rem *** Entrust.net ***
  665. rem --------------------------------------------------------------------------------------------------------------
  667. rem these certs are added 7/12/99
  668. set l_NAME=Entrust.net Secure Server Certification Authority
  669. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%,%l_CAUTH%,%l_CSIGN%" -name "%l_NAME%" Entrust\entrust.cer %l_AUTHROOTSTOREFILE%
  671. rem --------------------------------------------------------------------------------------------------------------
  672. rem *** EUnet ***
  673. rem --------------------------------------------------------------------------------------------------------------
  675. rem these certs are added 7/12/99
  676. set l_NAME=EUnet International Root CA
  677. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" EUNet\rootEUI.crt %l_AUTHROOTSTOREFILE%
  679. rem --------------------------------------------------------------------------------------------------------------
  680. rem *** Feste ***
  681. rem --------------------------------------------------------------------------------------------------------------
  683. rem these certs are added 7/12/99
  684. set l_NAME=FESTE, Verified Certs
  685. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" Feste\cacert1.der %l_AUTHROOTSTOREFILE%
  687. set l_NAME=FESTE, Public Notary Certs
  688. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" Feste\cacert2.der %l_AUTHROOTSTOREFILE%
  690. rem --------------------------------------------------------------------------------------------------------------
  691. rem *** IPS ***
  692. rem --------------------------------------------------------------------------------------------------------------
  694. rem these certs are added 7/12/99
  695. set l_NAME=IPS SERVIDORES
  696. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%,%l_CSIGN%" -name "%l_NAME%" IPS\root.cer %l_AUTHROOTSTOREFILE%
  698. rem --------------------------------------------------------------------------------------------------------------
  699. rem *** SecureNet (Australia) ***
  700. rem --------------------------------------------------------------------------------------------------------------
  702. rem these certs are added 7/12/99
  703. set l_NAME=SecureNet CA Class A
  704. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SecNet\classAv1.cer %l_AUTHROOTSTOREFILE%
  706. set l_NAME=SecureNet CA Class B
  707. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SecNet\classBv1.cer %l_AUTHROOTSTOREFILE%
  709. set l_NAME=SecureNet CA Root
  710. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SecNet\Rootv3.cer %l_AUTHROOTSTOREFILE%
  712. set l_NAME=SecureNet CA SGC Root
  713. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SecNet\RootSGC.cer %l_AUTHROOTSTOREFILE%
  715. rem
  716. rem On 12/3/01 removed the SGC CA certs
  717. rem
  718. rem Rotek SGC bridge cert
  719. rem %l_CMGR% SecNet\rbridge.cer %l_CASTOREFILE%
  722. rem --------------------------------------------------------------------------------------------------------------
  723. rem *** SecureNet (Hong Kong) ***
  724. rem --------------------------------------------------------------------------------------------------------------
  726. rem these certs are added 7/12/99
  727. set l_NAME=CW HKT SecureNet CA Class A
  728. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SecNetCW\classA.cer %l_AUTHROOTSTOREFILE%
  730. set l_NAME=CW HKT SecureNet CA Class B
  731. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SecNetCW\classB.cer %l_AUTHROOTSTOREFILE%
  733. set l_NAME=CW HKT SecureNet CA Root
  734. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SecNetCW\Root.cer %l_AUTHROOTSTOREFILE%
  736. set l_NAME=CW HKT SecureNet CA SGC Root
  737. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" SecNetCW\RootSGC.cer %l_AUTHROOTSTOREFILE%
  740. rem --------------------------------------------------------------------------------------------------------------
  741. rem *** TC TrustCenter ***
  742. rem --------------------------------------------------------------------------------------------------------------
  744. rem these certs are added 7/12/99
  745. set l_NAME=TC TrustCenter Class 1 CA
  746. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" TCTrust\tc_lot_1.cer %l_AUTHROOTSTOREFILE%
  748. set l_NAME=TC TrustCenter Class 2 CA
  749. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" TCTrust\tc_lot_2.cer %l_AUTHROOTSTOREFILE%
  751. set l_NAME=TC TrustCenter Class 3 CA
  752. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" TCTrust\tc_lot_3.cer %l_AUTHROOTSTOREFILE%
  754. set l_NAME=TC TrustCenter Class 4 CA
  755. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" TCTrust\tc_lot_4.cer %l_AUTHROOTSTOREFILE%
  757. set l_NAME=TC TrustCenter Time Stamping CA
  758. %l_CMGR% -eku "%l_TSTMP%" -name "%l_NAME%" TCTrust\tc_lot_ts.cer %l_AUTHROOTSTOREFILE%
  761. rem --------------------------------------------------------------------------------------------------------------
  762. rem *** UserTrust ***
  763. rem --------------------------------------------------------------------------------------------------------------
  765. rem these certs are added 7/12/99
  766. set l_NAME=UTN - DATACorp SGC
  767. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" UserTrust\rootsgc.cer %l_AUTHROOTSTOREFILE%
  769. set l_NAME=UTN - USERFirst-Client Authentication and Email
  770. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" UserTrust\cli_e.cer %l_AUTHROOTSTOREFILE%
  772. set l_NAME=UTN - USERFirst-Hardware
  773. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" UserTrust\hardware.cer %l_AUTHROOTSTOREFILE%
  775. set l_NAME=UTN - USERFirst-Network Applications
  776. %l_CMGR% -eku "%l_EMAIL%,%l_SAUTH%" -name "%l_NAME%" UserTrust\netapp.cer %l_AUTHROOTSTOREFILE%
  778. set l_NAME=UTN - USERFirst-Object
  779. %l_CMGR% -eku "%l_CSIGN%,%l_TSTMP%" -name "%l_NAME%" UserTrust\object.cer %l_AUTHROOTSTOREFILE%
  781. rem
  782. rem On 12/3/01 removed the SGC CA certs
  783. rem
  784. rem UserTrust SGC bridge cert
  785. rem %l_CMGR% UserTrust\utbridge.cer %l_CASTOREFILE%
  788. rem --------------------------------------------------------------------------------------------------------------
  789. rem *** NetLock ***
  790. rem --------------------------------------------------------------------------------------------------------------
  792. rem these certs are added 7/15/99
  793. set l_NAME=NetLock Kozjegyzoi (Class A) Tanusitvanykiado
  794. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%,%l_IPUSER%,%l_IPTUNNEL%,%l_EFS%,%l_TSTMP%" -name "%l_NAME%" NetLock\classa.cer %l_AUTHROOTSTOREFILE%
  796. set l_NAME=NetLock Uzleti (Class B) Tanusitvanykiado
  797. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%,%l_IPUSER%,%l_IPTUNNEL%,%l_EFS%,%l_TSTMP%" -name "%l_NAME%" NetLock\classb.cer %l_AUTHROOTSTOREFILE%
  799. set l_NAME=NetLock Expressz (Class C) Tanusitvanykiado
  800. %l_CMGR% -eku "%l_SAUTH%,%l_CAUTH%,%l_EMAIL%,%l_IPUSER%,%l_IPTUNNEL%,%l_EFS%,%l_TSTMP%" -name "%l_NAME%" NetLock\classc.cer %l_AUTHROOTSTOREFILE%
  802. rem --------------------------------------------------------------------------------------------------------------
  803. rem *** .sst file checkin ***
  804. rem --------------------------------------------------------------------------------------------------------------
  806. rem echo .
  807. rem echo . checking in *.sst
  808. rem echo .
  810. rem %in -c"auto create" *.sst
  812. certmgr -v %l_AUTHROOTSTOREFILE% > authroots.txt
  813. certmgr -v %l_ROOTSTOREFILE% > roots.txt
  814. certmgr -v %l_CASTOREFILE% > cas.txt