In the Nsure auditing system, all certificates must be signed by the Secure Logging Certificate and they must contain an Application Identifier.
To determine if a certificate is valid, enter the following command:
audcgen -cert:filename -v -appcert:target_certificate
The following table reviews each of the command parameters:
The following is a sample command to validate the Logging Application Certificate for the eDirectory Instrumentation:
audcgen -cert:c:\cacert.pem -v -appcert:c:\windows\dsicert.pem