After the installation has been completed, you should verify that everything works correctly.
Run the following command on the CA to verify that the CA service is up and ready to receive requests.
PS C:\> Certutil -ping
Connecting to Win2k12RootCA.hsm.local\rootca.hsm.local ...
Server "rootca.hsm.local" ICertRequest2 interface is alive (15ms)
CertUtil: -ping command completed successfully.
Run the command Certutil –store my *on the CA to verify that the CA is configured for the correct key and provider.
PS C:\> certutil -store my *
my "Personal"
================ Certificate 0 ================
Serial Number: 62cb8d6fb4f3b2ac4b8880b2d743166b
Issuer: CN=rootca.hsm.local, DC=hsm, DC=local
NotBefore: 29.03.2017 12:56
NotAfter: 29.03.2022 13:05
Subject: CN=rootca.hsm.local, DC=hsm, DC=local
CA Version: V0.0
Signature matches Public Key
Root Certificate: Subject matches Issuer
Cert Hash(sha1): bc 14 ec b1 12 d0 f4 39 db ce 35 50 75 70 ...
Key Container = rootca.hsm.local
Unique container name: D2E5CD8E1AB51DA3B1DE7ACEB0657635
Provider = Utimaco CryptoServer Key Storage Provider
Private key is NOT plain text exportable
Signature test passed
CertUtil: -store command completed successfully.
Request and issue a certificate for a user or computer, and inspect the resulting certificate details to verify that the certificate shows the correct signature algorithm and signature hash algorithm.
If everything works correctly, the installation is completed.
