Solved

Microsoft CA IIS problem

Posted on 2009-04-03
7
679 Views
Last Modified: 2012-05-06
Hello, I am having an issue with my in house CA server. I was attempting to allow HTTPS authentication for me CA website under IIS. I went to default website under Directory Security tab. For Authentication and Access Control I changed it from the default anonymous IUSR_CASRV account to integrated windows authentication. When I pressed apply/ok it applied that to all the sub directories, and now when access my site and select request certificate it says that there are no templates found. I went back and removed the integrated windows authentication, but I'm still having the same result. I've restarted my services and still have been unable to access my cert templates via the web interface. Any help would be greatly appreciated.
0
Comment
Question by:jmchristy
  • 5
  • 2
7 Comments
 
LVL 31

Expert Comment

by:Paranormastic
ID: 24060953
try running this from cmd box:
certutil -vroot
0
 
LVL 31

Expert Comment

by:Paranormastic
ID: 24060964
otherwise try deleting the site and rename the actual file folders and then run that again...
0
 

Author Comment

by:jmchristy
ID: 24061157
Just to clairify, I should delete my sites from the IIS (CertControl, CertEnroll, CertSrv) Default Web Site? Which file folders should I rename? I'm sorry, I don't have a lot of experience with IIS.
0
VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

 
LVL 31

Accepted Solution

by:
Paranormastic earned 500 total points
ID: 24062906
Sorry, yes delete the certsrv listing in IIS.
Sorry, typed that a little weird there - rename files or move to a folder - the .asp files in %systemroot%\system32\certsrv

The certsrv folder also contains files for your CA, so careful not to overdo it.  Probably easiest to make a 'oldASPfiles' folder or something like that and move all the ASP files into there.

Then run commands as above.
0
 
LVL 31

Expert Comment

by:Paranormastic
ID: 24062912
Yes - remove all from IIS: CertControl, CertEnroll, CertSrv
0
 
LVL 31

Expert Comment

by:Paranormastic
ID: 24062925
Alternatively, you could use the CA MMC to backup CA and backup the private key and database (not incremental) and reinstall certificates services as well with the same results, then go back into CA MMC and choose to restore CA and point to the file you backed up.  Adviseable to do a full backup including system state before reinstalling cert services, just to be safe, in addition to backing up the CA from the MMC.
0
 

Author Comment

by:jmchristy
ID: 24076101
Removing the IIS sites and running the command worked! I have to copy the ASP files back to their original location because they didn't recreate, but once I did, I was able to see my templates in the webcert request form. Thank you.
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Logparser is the smartest tool I have ever used in parsing IIS log files and there are many interesting things I wanted to share with everyone one of the  real-world  scenario from my current project. Let's get started with  scenario - How do w…
Running classic asp applications under Windows Server 2008 R2 (x64) and IIS 7 is not as easy as one may think. It took me a while to figure it out while getting error 8002801d a few times. After you install the OS you will need to install the fol…
This Micro Tutorial will give you a basic overview how to record your screen with Microsoft Expression Encoder. This program is still free and open for the public to download. This will be demonstrated using Microsoft Expression Encoder 4.
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now