Custom CSP & MS CA on Windows 2008 R2 datecenter RRS feed

  • Question

  • I'm writing my own Crypto Service Provider, and it should work with MS Certification Authority.

    But there's a problem with Windows 2008 r2 datacenter x64: there's no call for I_CryptGetDefaultCryptProv, and there's no call for my CryptAcquireContext at all. CA site (I use "create and submit advanced certificate request" option) says

    You may have selected a CSP that does not support the key type defined in the template. Please modify the key type in the template or select either different CSP or certificate template.

    So, there's no list of supported algorithms and I can't submit new request. My CSP can generate AT_SIGNATURE & AT_KEYEXCHANGE keys, but there's no call for CPGetProvParam, so I don't know, how CA should know about it. As we remember, for WinXP 32 & Win7 x64 everything works fine.

    Has anybody encountered this problem?

    Wednesday, April 2, 2014 2:51 AM