what req_extensions should I pass to openssl to include "S/MIME Capabilities" into my CSR?
Please see example openssl s_client outpout below from installed certificate.
I aware of
"X509v3 extensions" - keyUsage= attribute.
and
"X509v3 Extended Key Usage" - extendedKeyUsage= attribute.
openssl s_client output:
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Non Repudiation, Key Encipherment, Data Encipherment
S/MIME Capabilities:
050...{some binary like data}
X509v3 Extended Key Usage:
TLS Web Server Authentication
P.S. Looks like for MS this is -SmimeCapabilities attribute: https://docs.microsoft.com/en-us/powershell/module/pkiclient/new-selfsignedcertificate?view=win10-ps