- Products
- Learn
- Local User Groups
- Partners
- More
The State of Ransomware Q1 2026
Key Trends and Their Impact
Good, Better, Best:
Prioritizing Defenses Against Credential Abuse
AI Security Masters E7:
How CPR Broke ChatGPT's Isolation and What It Means for You
Blueprint Architecture for Securing
The AI Factory & AI Data Center
Call For Papers
Your Expertise. Our Stage
CheckMates Go:
CheckMates Fest
On Windows, there is a utility called certutil.exe
If you'd run this,
certutil -v -dump C:\<your-ca-file>.p12
and share the output, this will help troubleshoot further.
Specifically, there will be a section Certificate Extensions, and if you will find 1.3.6.1.4.1.311.20.2: Certificate Template Name (Certificate Type): CA or SubCA - it is a kind of a certificate you need.
If it is a server certificate (as I am suspecting), you will find a section
2.5.29.37: Enhanced Key Usage
Server Authentication (1.3.6.1.5.5.7.3.1)
or
Client Authentication (1.3.6.1.5.5.7.3.2)
then it is the wrong kind of certificate, and you'll need a CA-one.
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY
