Page 1 of 1
NCPA signed certificate and private key question.
Posted: Mon Oct 19, 2020 11:04 am
by HIINNS
Some members of our networking staff were wondering if there was some way that an NCPA agent residing on a Windows server could use certificates from the native Windows Certificate Store, rather than storing a signed certificate and private key in a file folder and modifying the ncpa.cfg file to point to where the signed certificate and private key reside.
Re: NCPA signed certificate and private key question.
Posted: Mon Oct 19, 2020 4:51 pm
by dchurch
The NCPA configuration currently allows for two settings:
- certificate = adhoc where it generates a self-signed certificate as-needed, and
- certificate = [SOME-FILE.crt],[SOME-FILE.key] where it loads a pre-generated certificate from a file
NCPA currently does not support loading certificates from the Windows certificate store. In order to use a certificate from the Windows store, it must be exported to a file.
I can submit a feature request to add a third configuration route if you'd like. Please keep in mind that the decision to implement the enhancement is at the discretion of our development team.
A possible workaround might be to store the certificate and key files on a networked drive, and point the
ncpa.cfg path to those files.
See here for more configuration documentation