You are on page 1of 2

Argument

outputCertificateFile
Basic Options

Description
The name of the .cer file where the test X.509 certificate will be written.

Option
-nx509name

Description
Specifies the subject's certificate name. This name must conform to the X.500 standard. The simplest method is to specify the name in double quotes, preceded by CN=; for example, "CN=myName". Specifies the subject's key container location, which contains the private key. If a key container does not exist, it will be created. Specifies the subject's certificate store location. Location can be either currentuser(the default), or localmachine. Specifies the subject's certificate store name that stores the output certificate. Specifies a serial Number from 1 to 2^31-1. The default is a unique value generated by Makecert.exe. Specifies the signing authority of the certificate, which must be set to either commercial (for certificates used by commercial software publishers) or individual(forcertificates used by individual software publishers). Displays command syntax and a list of basic options for the tool. Displays command syntax and a list of extended options for the tool.

-skkeyname -srlocation -ssstore -#number -$authority

-? -!
Extended Options

Option
-aalgorithm -bmm/dd/yyyy -cycertType -dname -emm/dd/yyyy -ekuoid[,oid] -hnumber -icfile

Description
Specifies the signature algorithm. Must be either md5 (the default) or sha1. Specifies the start of the validity period. Defaults to the certificate's creation date. Specifies the certificate type. Valid values are endfor end-entity, authorityfor certification authority, or both. Displays the subject's name. Specifies the end of the validity period. Defaults to 12/31/2039 11:59:59 GMT. Inserts a list of comma-separated, enhanced key usage object identifiers (OIDs) into the certificate. Specifies the maximum height of the tree below this certificate. Specifies the issuer's certificate file.

Specifies the issuer's CryptoAPI provider name. a URL).pvk private key file. of the certificate validity period. exchange. which must be signature.pvk private key file. Specifies the issuer's certificate common name. or an integer (such as4). Specifies the issuer's . Specifies the subject's CryptoAPI provider name. . Includes the Netscape client-authorization extension. The file is created if none exists. Specifies the subject's CryptoAPI provider type. Location can be either currentuser(the default) or localmachine. Specifies the issuer's certificate store name.-ikkeyName -ikykeytype -in name -ipprovider -irlocation -isstore -ivpvkFile -iypvkFile -llink -mnumber -nscp -r -scfile -skykeytype -spprovider -svpvkFile -sytype Specifies the issuer's key container name. Specifies the location of the issuer's certificate store. Links to policy information (for example. which must be signature. in months. Specifies the subject's . Specifies the issuer's key type. Specifies the duration. Specifies the issuer's CryptoAPI provider type. Specifies the subject's key type. Specifies the subject's certificate file. or an integer (such as4). Creates a self-signed certificate. exchange.