Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

SSL Certificate Import in SBS 2011

Posted on 2011-09-26
8
2,572 Views
Last Modified: 2013-12-02
I am doing a migration from SBS 2003 to 2011. I have followed the MS instructions to export my trusted SSL certificate from the old server and copied it to the new one.
If I browse to the Computer Personal Certificate store I can see the certificate in there, however when I run the Add a Trusted Certificate Wizard and browse for certificates it does not appear in the list.
Any ideas?
0
Comment
Question by:nealerocks
  • 5
  • 3
8 Comments
 
LVL 57

Expert Comment

by:Cliff Galiher
ID: 36699932
Exporting and importing is tricky. You have to get the private key, get it in the right store, get the system *exactly* as expected for the wizards. Time consuming and error prone. Skip it. Use the certificate to generate a new CSR (and, by proxy, private key), then use the "rekey" option of your public CA to generate a new certificate. Rekeying is free, as far as SBS is concerned, you used the wizards as intended, and it is almost foolproof for a successful cert. Much better than the export/import game.

-Cliff
0
 
LVL 12

Author Comment

by:nealerocks
ID: 36708376
Thanks for the suggestion. I will give this a go tomorrow.
0
 
LVL 12

Author Comment

by:nealerocks
ID: 36714804
I generated a new CSR request and rekeyed my certificate but it still doesn't appear in my Add a trusted certificate wizard.
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 
LVL 57

Expert Comment

by:Cliff Galiher
ID: 36714808
HOW did you generate the new CSR?
0
 
LVL 12

Author Comment

by:nealerocks
ID: 36714827
I used the new exchange certificate from the exchange 2010 management console
0
 
LVL 57

Expert Comment

by:Cliff Galiher
ID: 36714974
No. Stick to the SBS wizard. Use the add trusted certificate wizard to generate the CSR (the first option in the wizard) then rekey with that CSR, then rerun the wizard to import the cert (the second option in the wizard.) it is designed to be run twice and manages properly pairing public and private keys. By skipping the first run during the CSR phase, you are just confusing the wizard.

-Cliff
0
 
LVL 12

Accepted Solution

by:
nealerocks earned 0 total points
ID: 36715090
I managed to get around it by installing it directly into exchange rather than the wizard.
0
 
LVL 12

Author Closing Comment

by:nealerocks
ID: 36899025
Figured it out myself.
Thanks for the suggestions.
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've often see, or have been asked, the question about the difference between the Exchange 2010 SP1 version, available as part of Small Business Server (SBS) 2011, and the “normal” Exchange 2010 SP1 Standard. The answer to the question is relativ…
I’m often asked about newer and larger USB drives connected to SBS2008 and 2011 failing Windows Server Backup vs the older USB drives not failing. As disk space continues to grow and drive technology change SBS2008 and some SBS2011 end up with the f…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question