Product DocsMenu

Finding the Thumbprint of a Certificate

A certificate thumbprint is an hexadecimal string that uniquely identifies a certificate. A thumbprint is calculated from the content of the certificate using a thumbprint algorithm. CES accepts Secure Hash Algorithm 1 (SHA-1) thumbprints in the 40-digit hexadecimal string form without spaces.

Example: When you find the 93 43 67 bf 1c 97 03 3f 87 7d b0 f1 5c b1 b5 86 95 7d 31 33 thumbprint for a search security certificate, you can enter it in a certificate whitelist as follows: <Thumbprint>934367bf1c97033f877db0f15cb1b586957d313</Thumbprint>

You can find the thumbprint of a certificate using the Microsoft Management Console (MMC), by importing a certificate, and then read its thumbprint in the properties.

Note: You can use other external tools to extract the thumbprint of a certificate. Portecle is one of them with which you can find the thumbprint under the SHA-1 fingerprint section (see http://portecle.sourceforge.net/).

To find the thumbprint of a certificate using the MMC

  1. Using an administrator account, connect to the Coveo Master server.

  2. Open a Command Prompt window.

  3. Type mmc and press the ENTER key.

  4. In the Console add a certificate snap-in:

    1. On the File menu, click Add/Remove Snap In.

    2. Click Add.

    3. In the Add or remove Snap-ins dialog box, select Certificates.

    4. Click Add.

    5. In the Certificates snap-in dialog box, select Computer account and click Next.

    6. In the Select Computer dialog box, click OK.

    7. In the Add or remove Snap-ins dialog box, click OK.

  5. In the Console certificate snap-in, import the certificate for which you want to view the thumbprint:

    1. In the Console Root window, expand Certificates (Local Computer).

    2. Right-click the Personal folder, and then select All Tasks > Import.

    3. In the first Certificate Import Wizard page, click Next.

    4. In the second Certificate Import Wizard page, click Browse to locate the file of the certificate for which you want to find the thumbprint, and then click Next.

      Example: D:\CES7\Config\Certificates\cert-iis.pem

    5. In the third Certificate Import Wizard page, click Next.

    6. In the fourth Certificate Import Wizard page, click Finish.

  6. In the Console certificate snap-in, read the certificate thumbprint:

    1. In the Console Root window, expand Certificates (Local Computer) > Personal > Certificates.

    2. In the central panel, double-click the certificate that you just added.

    3. In the Certificate dialog box:

      1. Select the Details tab.

      2. Select Thumbprint in the list and read or copy the thumbprint hexadecimal string.

  7. Optionally, on the File menu, click Save or Save As to save the console file for later reuse.

People who viewed this topic also viewed