Skip to main content


         This documentation site is for previous versions. Visit our new documentation site for current releases.      
 

Are there any types of certificates that are not supported by the Security Token Service?

Updated on September 10, 2021

Yes. The Pega Robotic Automation Security Token Service does not support CNG (Cryptography Next Generation) certificates.

There are two ways to determine if a certificate is a CNG certificate:

  • Do a p/invoke of CertGetCertificateContextProperty, and inspect dwProvType on the returned CertGetCertificateContextProperty.
  • Use the certutil command from the command line to query the certificates.

If the ProviderType (rgProvParam) and KeySpec (dwKeySpec) are zero (0), it is a CNG private key. Here is the format of the command that you would use to list the certificate properties:

certutil -v -store [StoreName]

For example, use the following command:

certutil -v -store my
Note: Use the certutil –store –? command to get Help on the –store command.
  • Previous topic Adding Robotic Automation components to the Windows Defender excluded list
  • Next topic Can you customize the menu options that display when you click the Runtime icon?

Tags

Robotic Process Automation Robotics System Architect Robotic Process Automation

Have a question? Get answers now.

Visit the Support Center to ask questions, engage in discussions, share ideas, and help others.

Visit the Support Center

Did you find this content helpful?

Yes
No

Want to help us improve this content?
Suggest an edit

We'd prefer it if you saw us at our best.

Pega.com is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us