Home > Commands A-M > Commands Ca-Cg

CERTREQ RETRIEVE


Description | Syntax | Parameters | Switches | Related | Notes | Examples | Errorlevels | Availability

To retrieve a response to a previous request from a certification authority (CA).


Syntax

CERTREQ -retrieve [/?]

CERTREQ -retrieve [-binary] [-config machine\user] [-crl] [-rpc] request_id [output_file [chain_output_file [response_output_file]]]


Parameters
chain_output_file (NT2003)
Specifies the binary or base64-encoded PKCS #7 file to which you want to send output.
output_file (NT2003)
Specifies the binary or base64-encoded X.509 v3 file to which you want to send output.
request_id (NT2003)
Specifies the request or certificate that you want to retrieve.
response_output_file (NT2003)
Specifies the binary or base64-encoded Full Response file to which you want to send output.

Switches
/? (NT2003)
Display cluster group syntax. Default.
-binary (NT2003)
Formats output files as binary instead of base64-encoded.
-config machine\user (NT2003)
Processes the operation by using the certification authority specified in machine\name. Otherwise, default CA processes the request
You must specify the machine or user. Otherwise, the Select Certificate Authority dialog box appears and displays a list of all CAs that are available.
If you use "-config -", the operation is processed using the default CA.
-crl (NT2003)
Includes certificate revocation lists (CRLs) in the output to the base64-encoded PKCS #7 file specified by chain_output_file or to the base64-encoded file specified by response_output_file.
-rpc (NT2003)
Instructs Certificate Services to use a remote procedure call (RPC) server connection instead of Distributed COM.
-retrieve (NT2003)
Retrieves a response to a previous request from a certificate authority.

Related

CERTREQ ACCEPT
CERTREQ NEW
CERTREQ POLICY
CERTREQ SIGN
CERTREQ SUBMIT


Notes

You can use CERTREQ -retrieve request_id to retrieve the certificate after the CA has actually issued it. You can also use it to retrieve any certificate that has ever been issued by the CA, including revoked or expired certificates, without regard to whether the certificate's request was ever in the pending state.

If you submit a request to the CA, the policy module of the CA might leave the request in a pending state and return the request_id to the CERTREQ caller for display. Eventually, the CA's administrator will issue the certificate or deny the request.


Examples

none.


Errorlevels

none.


Availability
External
DOS
none
Windows
none
Windows NT
NT2003