Mozilla CertUtil - Mozilla "certutil -V -u" - Validate Certificate in cert8.db

Mozilla "certutil -V -u" - Validate Certificate in cert8.db

Q

How to validate a certificate stored in a "cert8.db" file using Mozilla "certutil" tool?

✍: FYIcenter.com

A

If you want to validate a certificate stored a "cert8.db" file, you can use the Mozilla "certutil -V -i" command as shown in this tutorial:

C:\fyicerter>\fyicerter\nss\bin\certutil -L -d .\

GeoTrust SSL CA                                              ,,
GeoTrust Global CA                                           C,,

C:\fyicerter>\fyicerter\nss\bin\certutil -V -d .\
-n "GeoTrust Global CA" -u V

\fyicenter\nss\bin\certutil.exe: certificate is valid

C:\fyicerter>\fyicerter\nss\bin\certutil -V -d .\
-n "GeoTrust SSL CA" -u V

\fyicenter\nss\bin\certutil.exe: certificate is invalid: 
   Certificate key usage inadequate for attempted operation.

What you are getting from this tutorial:

"-V" command validates a certificate stored in the certificate database.
"-d .\" specifies the directory where the database, cert8.db, is located.
'-n "..."' specifies a name for the certificate to be validated.
'-u V' specifies the type of certificate usage to be validated. "V" means to validate the certificate for usage of SSL server.
"GeoTrust Global CA" certificate passed the validation. But "GeoTrust SSL CA" certificate failed the validation. May be it should also be set with trust argument of "C (trusted CA to issue server certs)".

2012-08-02, 7896👍, 0💬

💬 2014-11-26 FYIcenter.com: Hi Jeff, if you follow the above tutorial starting from step #3, you should be able to import any existing certificate into Fire...

💬 2014-11-24 Jeff: How I can import existing .cer certificate to firefox database using command line?

Mozilla "certutil -V -u" - Validate Certificate in cert8.db
How to validate a certificate stored in a "cert8.db" file using Mozilla "certutil" tool? If you want to validate a certificate stored a "cert8.db" file, you can use the Mozilla "certutil -V -i" command as shown in this tutorial: C:\fyicerter>\fyicerter\nss\bi n\certutil-L -d .\ GeoTrust SSL CA ,, Ge... 2012-08-02, 7897👍, 0💬

What Is "certmgr.msc" on Windows Computer
What is "certmgr.msc" on Windows computer? What can I use it for? "certmgr.msc" is a predefined MMC (Microsoft Management Console) snap-in tool. "certmgr.msc" can be used as a GUI (Graphical User Interface) to manage certificates on a Windows system. Functions supported in "certmgr.msc" are: List al... 2012-08-02, 7816👍, 0💬

Mozilla "certutil -O" - Print Certificate Chain in cert8.db
How to print out the certificate chain a "cert8.db" file using Mozilla "certutil" tool? If you want to print out the certificate chain in a "cert8.db" file, you can use the Mozilla "certutil -O" command as shown in this tutorial: C:\fyicerter>\fyicerter\nss\bi n\certutil-O -d .\ -n "GeoTrust SSL CA"... 2012-12-09, 5400👍, 0💬

Mozilla "certutil -V" Command Options
How can I use Mozilla "certutil -V" command? What are command options supported by "certutil -V"? The document says "Validate a certificate". Mozilla "certutil -V" command can be used to validate a certificate stored in the "cert8.db" file. Here are options supported by the "certutil -V" command: -V... 2012-12-09, 4373👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.