I have a customer that has an unusual request. the want a V2 certificate?
Is there such a thing? All my certificates have been V3.
So can I create a V2 certificate with something like certutil or another tool?
Is it even possible?

SSL v2 hasn't seen widespread use since v3 came out in 1996 to address serious security flaws in the prior version. Enabling v2 protocol allows people using older browsers to connect to your site, however, those transactions are less secure and, should it matter, such a site cannot achieve PCI compliance. SSL v2 is disabled or non existent in IE 7+, Firefox 2+, Opera and Safari. Any site needing to use SSL/TLS should not be using the old protocol. In fact, the latest version of TLS will not function with SSL v2 at all.

2 members found this post helpful.

I agree with NyteOwl and suggest that you should take this post, along with some supporting material (which NiteOwl may be able to provide?) to explain to your client why, "no, you really don't want a V2 certificate, and here is why."

You do not want to weaken the cryptographic security of your site just to accommodate "a particularly loud-mouthed Luddite who buys an occasional toaster from you now and then." They're out there, all right ... still using Windows 95...

(Actually, now that you mention it, I did hear of one company that cooked up a very creative solution to deal with one old scrotch of a client who did place big orders. They set up "a special web-site just for him," which was simply a secure proxy to their real site. They customized the templates for the "personal" site to stroke the guy's ego, but all the site actually did was to immediately re-encrypt and re-transmit.

does the customer have a reason for "v2", do they even know what that means? maybe they though v2 was better because it is a step above v1 ???

My guess is the api for some old solution they are using. Probably requiring CryptoAPI used by v2 instead of CNG used by V3.