• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1351
  • Last Modified:

SBS Certificate Install

SBS 2003 R2 Premium w/ ISA 2004.  
Everything working fine and tested with self-signed certificate.  
After generating CSR and purchasing CA certificate from Verisign, I was going to install through CIECW but noticed it was looking for a *.cer file and I had a *.crt file.   I then installed through IIS cert. wizard.  Install went fine but lost connection to RWW.  
Running CIECW again does not allow install of trusted certificate because no request is pending.  Is there any way to properly install the certificate at this point?  I have tweaked everything in ISA I could find but still no luck.  I suspect it needs to be installed through CIECW to function properly.  
Are there any issues with going back to a self signed certificate at this point?  It really worked fine, just wanted to get rid of the security warning.

  • 2
1 Solution
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
Normally, you would just rename the file to have a .cer extension and install with the CEICW.

But how much did you pay for an SSL certificat from Verisign?  Because I would think that would have been a TON!  You should be able to get a refund from them by telling them you bought it by mistake.

You can use a GoDaddy Certificate that costs only $19.95 and install by following these instructions:  http://sbsurl.com/ssl

BlaneCAuthor Commented:
Good point Jeff.  So you you think it would be easier to abandon the certificate I have, generate a new CSR, and install the new certificate rather than fixing the one I have?  The document you referenced is actually the procedure I followed and it doesn't mention using the CEICW for installation of the certificate.
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
Y'know... I hadn't looked over that document in awhile and I usually am installing a 3rd Party SSL certificate during the initial configuration of a server, the first time the CEICW is run.  During that procedure, you would change the name of the .crt file.  But in your case, the way to do it is as described in the document.

The only reason to get a NEW certificate would be if it's a lot less expensive.  You can still use the one you bought, but you will have to have them reissue it with a new CSR.  Check out the site where you purchased it for info on doing that.

Hi there,

This is the Jeff that wrote the document.  To answer your question, start from the top with your crt file.  When you get to the point where you install the certificate on IIS, then export it.

Another thing.  Don't add the certificate through the CEICW.  I tried that (in futility) and it didn't work.  (Hence, the procedure).

Also, it does work with R2.  Nothing in R2 changes that part of the SBS box.

If you have questions about specifics of the document, give me an e-mail, or better yet, post it here so more can ge the benefits of it.

Jeff (at TechSoEasy)  Thanks for recommending my document!  I appreciate it!

Jeff Dempsey
***EMAIL ADDRESS REMOVED BY TechSoEasy -- EE's Microsoft Zone Advisor***
(please note that email addresses are not premitted within your posts -- http:help.jsp#hi99)
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now