sscep.exe not writing certificate to disk

[Olieschaick]

Hi,

Hope someone can help.

I have an openssl config file which works fine like (see below). Using OpenSSL I can create the key and CSR.

Now when I use the CSR with SSCEP.exe it does send in the request and does get back a SUCCESS. Within the backend I see the certificate being created. And the SCEP logs tell me the certificate is returned.

But sscep.exe outputs: C:\Work\TestClient_v2\tools\SSCEP\sscep.exe: sending certificate request C:\Work\TestClient_v2\tools\SSCEP\sscep.exe: valid response from server C:\Work\TestClient_v2\tools\SSCEP\sscep.exe: pkistatus: PENDING C:\Work\TestClient_v2\tools\SSCEP\sscep.exe: requesting certificate (#1) C:\Work\TestClient_v2\tools\SSCEP\sscep.exe: valid response from server C:\Work\TestClient_v2\tools\SSCEP\sscep.exe: pkistatus: SUCCESS C:\Work\TestClient_v2\tools\SSCEP\sscep.exe : C:\Work\TestClient_v2\tools\SSCEP**sscep.exe: cannot find requested certificate**

If I would use a simplified openssl config file with only a CN and challengePassword, it works flawlessly. What is goin on here, does anyone know?

Start config:

[req] distinguished_name = req_distinguished_name req_extensions = req_cert_extensions attributes = req_attributes prompt = no

[req_distinguished_name] CN=DEVICE_NAME 0.domainComponent=COMPANY 1.domainComponent=com

[req_cert_extensions] subjectAltName = @alt_names

[alt_names] otherName=1.3.6.1.4.1.311.20.2.3;UTF8:DEVICE_NAME@COMPANY.com DNS.1=DEVICE_NAME.COMPANY.com

[req_attributes] challengePassword=secret