|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Can't import certificate to IISHi
I created a SSL cert request on the IIS. I sent it to the cert provider. In the meantime I installed a test certificate on this web site. Today I got the certificate and tried to install. But it didn't work. There is no option to process the pending request. Than I installed the cert using MMC. But there seems to be no association to the private key. Any idea how to link the cert to the private key? I tried to use certutil (copied from a server having cert services installed), but it didn't work. I created a new request and tried to install the cert. But it didn't work. OS is Windows 2003 Web Edition. Thanks for help Thomas Hello Gu,
Private key is must to install it. Please do following: Go to IIS >> your domain for which you are installing SSL >> properties >> Directory services >> Server certificate >> Next >> Remove certificate >> Finish. your domain for which you are installing SSL >> properties >> Directory services >> Server certificate >> Next >>Import certificate >> Path and it will install certificate. Now you need to configure it for your web. Goto Properties of domain. On website TAB >> Advance >> ADD SSL >> Add your IP of wbsite with SSL Port 443. Save the changes. And its complete. You will see it works. Show quoteHide quote "Gu" wrote: > Hi > I created a SSL cert request on the IIS. I sent it to the cert > provider. > In the meantime I installed a test certificate on this web site. > Today I got the certificate and tried to install. But it didn't work. > There is no option to process the pending request. > Than I installed the cert using MMC. But there seems to be no > association to the private key. > Any idea how to link the cert to the private key? > I tried to use certutil (copied from a server having cert services > installed), but it didn't work. > I created a new request and tried to install the cert. But it didn't > work. > OS is Windows 2003 Web Edition. > Thanks for help > Thomas > > Well, ask the cert issuer to send you the complete key, then try MMC to
import the cert, follow by assigning the cert to the website. -- Show quoteHide quoteRegards, Bernard Cheah http://www.iis-resources.com/ http://www.iiswebcastseries.com/ http://msmvps.com/blogs/bernard/ "Gu" <gus***@imt.ch> wrote in message news:1144428947.564381.231600@i39g2000cwa.googlegroups.com... > Hi > I created a SSL cert request on the IIS. I sent it to the cert > provider. > In the meantime I installed a test certificate on this web site. > Today I got the certificate and tried to install. But it didn't work. > There is no option to process the pending request. > Than I installed the cert using MMC. But there seems to be no > association to the private key. > Any idea how to link the cert to the private key? > I tried to use certutil (copied from a server having cert services > installed), but it didn't work. > I created a new request and tried to install the cert. But it didn't > work. > OS is Windows 2003 Web Edition. > Thanks for help > Thomas > How I understand IIS do the following if I create a SSL cert request:
- it creates a key pair - it creates a cert request which includes only the public key The cert provider creates a certificate and signs the public key These means the private key is only on the server where the cert request was created. My questions is how to bring the certificate delivered by the cert provider together with the private key stored on my server. Normaly this is done by IIS if I load the certificate into IIS. This seems no longer to be possible, because I installed a test cert for this site in the meantime (after I created the cert request). Hi
in the meantime we created a new cert request and the cert provider made a new certificate - now it works. Technically speaking? when the cert is issue to you...it will have the
private key. -- Show quoteHide quoteRegards, Bernard Cheah http://www.iis-resources.com/ http://www.iiswebcastseries.com/ http://msmvps.com/blogs/bernard/ "Gu" <gus***@imt.ch> wrote in message news:1144780422.971992.117340@z34g2000cwc.googlegroups.com... > Hi > in the meantime we created a new cert request and the cert provider > made a new certificate - now it works. > 
Other interesting topics
Kerberos from XP to IIS hosting ASP.NET 2.0 Web Service help
CTL_E_PERMISSIONDENIED Security of Webpage Simple Anonymous Access question Common Name question IISAdmin on localhost Multiple Virtual Sites on One Server Running on Port 443 Can't 'get' from ftp folder viewing text files over internet 401.1 IE Error |
|||||||||||||||||||||||
