Solved

Microsoft CA IIS problem

Posted on 2009-04-03
7
678 Views
Last Modified: 2012-05-06
Hello, I am having an issue with my in house CA server. I was attempting to allow HTTPS authentication for me CA website under IIS. I went to default website under Directory Security tab. For Authentication and Access Control I changed it from the default anonymous IUSR_CASRV account to integrated windows authentication. When I pressed apply/ok it applied that to all the sub directories, and now when access my site and select request certificate it says that there are no templates found. I went back and removed the integrated windows authentication, but I'm still having the same result. I've restarted my services and still have been unable to access my cert templates via the web interface. Any help would be greatly appreciated.
0
Comment
Question by:jmchristy
  • 5
  • 2
7 Comments
 
LVL 31

Expert Comment

by:Paranormastic
Comment Utility
try running this from cmd box:
certutil -vroot
0
 
LVL 31

Expert Comment

by:Paranormastic
Comment Utility
otherwise try deleting the site and rename the actual file folders and then run that again...
0
 

Author Comment

by:jmchristy
Comment Utility
Just to clairify, I should delete my sites from the IIS (CertControl, CertEnroll, CertSrv) Default Web Site? Which file folders should I rename? I'm sorry, I don't have a lot of experience with IIS.
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 
LVL 31

Accepted Solution

by:
Paranormastic earned 500 total points
Comment Utility
Sorry, yes delete the certsrv listing in IIS.
Sorry, typed that a little weird there - rename files or move to a folder - the .asp files in %systemroot%\system32\certsrv

The certsrv folder also contains files for your CA, so careful not to overdo it.  Probably easiest to make a 'oldASPfiles' folder or something like that and move all the ASP files into there.

Then run commands as above.
0
 
LVL 31

Expert Comment

by:Paranormastic
Comment Utility
Yes - remove all from IIS: CertControl, CertEnroll, CertSrv
0
 
LVL 31

Expert Comment

by:Paranormastic
Comment Utility
Alternatively, you could use the CA MMC to backup CA and backup the private key and database (not incremental) and reinstall certificates services as well with the same results, then go back into CA MMC and choose to restore CA and point to the file you backed up.  Adviseable to do a full backup including system state before reinstalling cert services, just to be safe, in addition to backing up the CA from the MMC.
0
 

Author Comment

by:jmchristy
Comment Utility
Removing the IIS sites and running the command worked! I have to copy the ASP files back to their original location because they didn't recreate, but once I did, I was able to see my templates in the webcert request form. Thank you.
0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

Suggested Solutions

Running classic asp applications under Windows Server 2008 R2 (x64) and IIS 7 is not as easy as one may think. It took me a while to figure it out while getting error 8002801d a few times. After you install the OS you will need to install the fol…
When it comes to showing a 404 error page to your visitors, you do not want that generic page to show, and you especially do not want your hosting provider’s ad error page to show either. In this article, I will show you how to enable the custom 40…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now