Mozilla "certutil -V -u" - Validate Certificate in cert8.db

Q

How to validate a certificate stored in a "cert8.db" file using Mozilla "certutil" tool?

✍: FYIcenter.com

A

If you want to validate a certificate stored a "cert8.db" file, you can use the Mozilla "certutil -V -i" command as shown in this tutorial:

C:\fyicerter>\fyicerter\nss\bin\certutil -L -d .\

GeoTrust SSL CA                                              ,,
GeoTrust Global CA                                           C,,

C:\fyicerter>\fyicerter\nss\bin\certutil -V -d .\
-n "GeoTrust Global CA" -u V

\fyicenter\nss\bin\certutil.exe: certificate is valid

C:\fyicerter>\fyicerter\nss\bin\certutil -V -d .\
-n "GeoTrust SSL CA" -u V

\fyicenter\nss\bin\certutil.exe: certificate is invalid: 
   Certificate key usage inadequate for attempted operation.

What you are getting from this tutorial:

"-V" command validates a certificate stored in the certificate database.
"-d .\" specifies the directory where the database, cert8.db, is located.
'-n "..."' specifies a name for the certificate to be validated.
'-u V' specifies the type of certificate usage to be validated. "V" means to validate the certificate for usage of SSL server.
"GeoTrust Global CA" certificate passed the validation. But "GeoTrust SSL CA" certificate failed the validation. May be it should also be set with trust argument of "C (trusted CA to issue server certs)".

2012-08-02, 8821👍, 0💬

💬 2014-11-26 FYIcenter.com: Hi Jeff, if you follow the above tutorial starting from step #3, you should be able to import any existing certificate into Fire...

💬 2014-11-24 Jeff: How I can import existing .cer certificate to firefox database using command line?

Start "certmgr.msc" on Windows 7
How to start "certmgr.msc" Management Console on Windows computer? I want to use it manage certificates on my computer. If you want start "certmgr.msc" Management Console on a Windows computer, you can follow this tutorial: 1. Open a new command window. 2. Enter "certmgr.msc" as a command: C:\fyicen... 2016-12-19, 30229👍, 1💬

Mozilla "certutil -N" - Create New cert8.db File
How to create a new "cert8.db" file using Mozilla "certutil" tool? If you want to create a new "cert8.db" file to store certificates and private keys, you can use the Mozilla "certutil -N" command as shown in this tutorial: C:\fyicerter>\fyicerter\nss\bi n\certutil-N -d .\ Enter a password which wil... 2012-08-01, 11993👍, 0💬

certmgr.msc - Types of Certificate Stores on Windows
What types of certificate stores do I have on my Windows system? What is "Personal" certificate store for? If you start the "certmgr.msc" Management Console on your Windows 7 system, you probably will see this list of certificate stores: Personal - Contains certificates associated with private keys ... 2012-08-02, 11827👍, 0💬

What Is "certmgr.msc" on Windows Computer
What is "certmgr.msc" on Windows computer? What can I use it for? "certmgr.msc" is a predefined MMC (Microsoft Management Console) snap-in tool. "certmgr.msc" can be used as a GUI (Graphical User Interface) to manage certificates on a Windows system. Functions supported in "certmgr.msc" are: List al... 2012-08-02, 11479👍, 0💬

Mozilla "certutil -A -i" - Add Certificate to cert8.db File
How to add a certificate into "cert8.db" file using Mozilla "certutil" tool? I have a certificate file in PEM format If you want to add a certificate into a "cert8.db" file from a certificate file, you can use the Mozilla "certutil -A -i" command as shown in this tutorial: C:\fyicerter>\fyicerter\ns... 2012-08-01, 10214👍, 0💬

certmgr.msc - Export Certificate List on Windows
How to get the list of certificates from a certificate store in a text file? I want to keep a copy of it. You can export a list of certificates in a certificate store using the "certmgr.msc" tool as shown in this tutorial. 1. Start "certmgr.msc" Management Console on your Windows system. You see lis... 2012-08-02, 9183👍, 0💬

Mozilla "certutil -V -u" - Validate Certificate in cert8.db
How to validate a certificate stored in a "cert8.db" file using Mozilla "certutil" tool? If you want to validate a certificate stored a "cert8.db" file, you can use the Mozilla "certutil -V -i" command as shown in this tutorial: C:\fyicerter>\fyicerter\nss\bi n\certutil-L -d .\ GeoTrust SSL CA ,, Ge... 2012-08-02, 8822👍, 0💬

Mozilla "certutil -A" Command Options
How can I use Mozilla "certutil -A" command? What are command options supported by "certutil -A"? The document says "Add a certificate to the database". Mozilla "certutil -A" command can be used to import a certificate into the "cert8.db" file. Here are options supported by the "certutil -A" command... 2012-12-09, 6030👍, 0💬

Mozilla "certutil -O" - Print Certificate Chain in cert8.db
How to print out the certificate chain a "cert8.db" file using Mozilla "certutil" tool? If you want to print out the certificate chain in a "cert8.db" file, you can use the Mozilla "certutil -O" command as shown in this tutorial: C:\fyicerter>\fyicerter\nss\bi n\certutil-O -d .\ -n "GeoTrust SSL CA"... 2012-12-09, 6004👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.