Add a certificate thumbprint to the EricomSecureGateway.Config file
- Last UpdatedJul 17, 2024
- 1 minute read
Another way to add a trusted certificate thumbprint is to dump the certificate values and copy the identify thumbprint to the EricomSecureGateway.Config file. When you are using the extension identity of a certificate, the CertificateFindBy property value of the EricomSecureGateway.Config file should be set to "FindByExtension".
To add a certificate thumbprint to the EricomSecureGateway.Config file
-
Place a X.509 certificate at a known location of the computer running Secure Gateway.
-
Open a Command prompt window and enter the certutil command in the following form:
C:\Temp>certutil -dump CertificateName.cer
where CertificateName is the actual name of the certificate.
-
Find the Certificate Extensions 2 location of the output from the certutil command.
The identify string appears immediately beneath Certificate Extensions 2
Certificate Extensions: 2
1.2.840.113556.1.8000.2554.57748.52896.21682.18417.45066.8514989.679433.2: Flags = 0, Length = 1a
-
Copy the identity string.
-
Edit the EricomSecureGateway.Config file and locate the Security section of the file.
<Section name="Security">
<Property name="CertificateFindBy" type="X509FindType" value="FindByThumbprint" />
<Property name="CertificateFindValue" type="string" value=
-
Change FindByThumbprint to FindByExtension and copy the identity string as the value of the CertificateFindBy property.
<Section name="Security">
<Property name="CertificateFindBy" type="X509FindType" value="FindByExtension"/>
<Property name="CertificateFindValue" type="string" value=<Certificate Identity Thumbprint Goes Here> />
Example:
<Section name="Security">
<Property name="CertificateFindBy" type="X509FindType" value="FindByExtension"/>
<Property name="CertificateFindValue" type="string" value="1.2.840.113556.1.8000.2554.57748.52896.21682.18417.45066.8514989.679433.2"/>