1 line
27 KiB
Plaintext
1 line
27 KiB
Plaintext
|
{"ID":"20250923121609-0wylfl2","Spec":"2","Type":"NodeDocument","Properties":{"id":"20250923121609-0wylfl2","title":"windows创建自定义证书导入YubiKey开启BitLocker (Conflicted 2025-09-23 12:16:09)","type":"doc","updated":"20250912065519"},"Children":[{"ID":"20250923121609-2v78i8l","Type":"NodeHeading","HeadingLevel":1,"Properties":{"id":"20250923121609-2v78i8l","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":"windows创建自定义证书导入YubiKey开启BitLocker"}]},{"ID":"20250923121609-5ym7slo","Type":"NodeParagraph","Properties":{"id":"20250923121609-5ym7slo","updated":"20250912145511"},"Children":[{"Type":"NodeTextMark","TextMarkType":"a","TextMarkAHref":"https://www.jianshu.com/p/481dab626d68","TextMarkTextContent":"www.jianshu.com"}]},{"ID":"20250923121609-gp10nop","Type":"NodeHeading","HeadingLevel":2,"Properties":{"id":"20250923121609-gp10nop","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":"一、创建证书"}]},{"ID":"20250923121609-536wd49","Type":"NodeParagraph","Properties":{"id":"20250923121609-536wd49","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":"window证书是X.509 数字证书,遵守RFC 3280。 PowerShell中的New-SelfSignedCertificate命令可创建自定义证书。"}]},{"ID":"20250923121609-vfdd9qs","Type":"NodeParagraph","Properties":{"id":"20250923121609-vfdd9qs","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":"证书用途由OID决定,下面列出常见的OID.如果一个证书有多个用途,不同OID之间用英文的逗号链接\",\""}]},{"ID":"20250923121609-sfyjo4n","Type":"NodeParagraph","Properties":{"id":"20250923121609-sfyjo4n","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":" 2.5.29.32.0 所有颁发的策略\n 1.3.6.1.5.5.7.3.1 服务器身份验证\n 1.3.6.1.5.5.7.3.2 客户端身份验证\n 1.3.6.1.4.1.311.67.1.1 BitLocker驱动器加密\n 1.3.6.1.4.1.311.10.3.4 加密文件系统\n 1.3.6.1.4.1.311.10.3.12 文档签名\n 1.3.6.1.5.5.7.3.4 安全电子邮件"}]},{"ID":"20250923121609-96b8u6e","Type":"NodeParagraph","Properties":{"id":"20250923121609-96b8u6e","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":"创建密钥"}]},{"ID":"20250923121609-ma9ho8h","Type":"NodeParagraph","Properties":{"id":"20250923121609-ma9ho8h","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":" New-SelfSignedCertificate -Type Custom -Subject \"CN=jcl,E=im.jcl@live.com\" -TextExtension @(\"2.5.29.37={text}1.3.6.1.5.5.7.3.1,1.3.6.1.5.5.7.3.2,1.3.6.1.5.5.7.3.2,1.3.6.1.4.1.311.67.1.1,1.3.6.1.4.1.311.10.3.4,1.3.6.1.4.1.311.10.3.12,1.3.6.1.5.5.7.3.4\",\"2.5.29.17={text}upn=im.jcl@live.com\u0026email=im.jcl@live.com\") -KeyUsage KeyEncipherment -KeyAlgorithm RSA -KeyLength 2048 -HashAlgorithm sha256 -CurveExport CurveName -CertStoreLocation \"Cert:\\CurrentUser\\My\" -NotAfter (Get-Date).AddMonths(1200)"}]},{"ID":"20250923121609-vn5131i","Type":"NodeParagraph","Properties":{"id":"20250923121609-vn5131i","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":"命令中的参数含义"}]},{"ID":"20250923121609-lw9a54h","Type":"NodeParagraph","Properties":{"id":"20250923121609-lw9a54h","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":" CN 通用名称\n E 颁发者电子邮箱?\n upn 户主体名称\n email 安全电子邮箱的地址\n AddMonths(1200) 120个月后过期"}]},{"ID":"20250923121609-k6kvciq","Type":"NodeParagraph","Properties":{"id":"20250923121609-k6kvciq","updated":"20250912145511"},"Children":[{"Type":"NodeText","Data":""},{"Type":"NodeImage","Data":"span","Children":[{"Type":"NodeBang"},{"Type":"NodeOpenBracket"},{"Type":"NodeLinkText"},{"Type":"NodeCloseBracket"},{"Type":"NodeOpenParen"},{"Type":"NodeLinkDest","Data":"https://cubox.pro/c/filters:no_upscale()?imageUrl=https%3A%2F%2Fupload-images.jianshu.io%2Fupload_images%2F26353574-f9fde75382917f40.png%3FimageMogr2%2Fauto-orient%2Fstrip%7CimageView2%2F2%2Fw%2F1112%2Fformat%2Fwebp\u0026valid=false"},{"Type":"NodeCloseParen"}]},{"Type
|