Encryption certificates must contain Data Encipherment or Key Encipherment Encryption certificates must contain Data Encipherment or Key Encipherment powershell powershell

Encryption certificates must contain Data Encipherment or Key Encipherment


powershell certificate x509certificate dsc

You can use the New-SelfSignedCertificate cmdlet to generate the self signed certificate as well. I wrote this module which will help generate a certificate as required by DSC https://github.com/nanalakshmanan/xDSCUtils

powershell certificate x509certificate dsc

I found the blog post PowerShell V5 New Feature: Protect/Unprotect-CmsMessage by Keith Hill, which doesn't directly relate to this issue but it does show how to define a certificate request file that contains the Document Encryption key usage.

I now generate a self signed certificate using the following request inf:

[Version]Signature = "$Windows NT$"[Strings]szOID_ENHANCED_KEY_USAGE = "2.5.29.37"szOID_DOCUMENT_ENCRYPTION = "1.3.6.1.4.1.311.80.1"[NewRequest]Subject = "CN=test.dsc"KeyLength = 2048MachineKeySet = trueRequestType = CertKeySpec = AT_KEYEXCHANGEKeyUsage = CERT_KEY_ENCIPHERMENT_KEY_USAGE[Extensions]%szOID_ENHANCED_KEY_USAGE% = "{text}%szOID_DOCUMENT_ENCRYPTION%"

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last