How do you import/configure a Certificate in Microsfot Server 2003 R2 SE SP2 to run as a Service?

Thanks everyone for your help!

What we are trying to accomplish is the following.  We are implementing a sercure payment gateway with a 3rd Party Bank for e-payments.  We have proviced them with our Public key and we have our private.  The issue we are having is that we dont want to run the website under the default "Local Account" assigned by the Certificas MMC snap-in when importing the certificate.  We want to import the Certificate using the option of Network Services and configure a Application Pool to use under the Identity the Network Service Account, which rigth now this Network Service Account is not able to access the Certificate since its located under Certificates | Local Computer | Personal | Certificates.    

Hope you can understand my situation.

Thanks.
AC
transitcenterAsked:
Who is Participating?
 
transitcenterConnect With a Mentor Author Commented:
Guys,
I foudn the solution i was looking for.  See below:

Step 1 - Install the Microsoft Windows HTTP Services Certificate Configuration Tool (WinHttpCertCfg.exe)

Step 2 – import the cert.

C:\Program Files\Windows Resource Kits\Tools>winhttpcertcfg -i certname.comapany.com.pfx -c LOCAL_MACHINE\My -a IWAM_SERVERNAME -p PASSWORD
Microsoft (R) WinHTTP Certificate Configuration Tool
Copyright (C) Microsoft Corporation 2001.

Imported certificate:
CN=certname.comapany.com
OU=Domain Control Validated
O=certname.comapany.com


Granting private key access for account:
    SERVERNAME\IWAM_SERVERNAME



Step 3 – grant access to Network Account.

C:\Program Files\Windows Resource Kits\Tools>winhttpcertcfg.exe -g -c LOCAL_MACH
INE\My -s "certname.comapany.com" -a "NetworkService"
Microsoft (R) WinHTTP Certificate Configuration Tool
Copyright (C) Microsoft Corporation 2001.

Matching certificate:
CN=certname.comapany.com
OU=Domain Control Validated
O=certname.comapany.com

Granting private key access for account:
    NT AUTHORITY\NETWORK SERVICE

C:\Program Files\Windows Resource Kits\Tools>
0
 
jimmernetCommented:
I'm afraid I don't really! Why can't you load the certificate as normal - ie load the cert in the cert mmc for local system, select this in IIS and make sure that it's bound properley. Then simply change the account the app pool runs under. The SSL certificate in IIS is recognised by whatever user the app pool runs under..

Or am I missing the point?
0
 
transitcenterAuthor Commented:
The solution was what i was looking for.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.