I know Exchange 2010 (prior to SP3) is not fully supported on Win2012, but I read that it might just work.
I am getting the following error contstantly:
I tried the following which I found many times over:
Still, it keeps giving that error. What to do?
I am getting the following error contstantly:
[12/22/2012 15:21:22.0145] [2] Unexpected Error
[12/22/2012 15:21:22.0191] [2] Could not grant Network Service access to the certificate with thumbprint 5A442CC0A9ED647E03DE0C1BCFD7321AEDF2 96EF because a cryptographic exception was thrown.
[12/22/2012 15:21:22.0192] [2] Access is denied.
[12/22/2012 15:21:22.0194] [2] Ending processing.
[12/22/2012 15:21:22.0195] [1] The following 1 error(s) occurred during task execution:
[12/22/2012 15:21:22.0195] [1] 0. ErrorRecord: Could not grant Network Service access to the certificate with thumbprint 5A442CC0A9ED647E03DE0C1BCFD7321AEDF2 96EF because a cryptographic exception was thrown.
[12/22/2012 15:21:22.0196] [1] 0. ErrorRecord: Microsoft.Exchange.Management.System Configurat ionTasks.A ddAccessRu leCryptogr aphicExcep tion: Could not grant Network Service access to the certificate with thumbprint 5A442CC0A9ED647E03DE0C1BCF D7321AEDF2 96EF because a cryptographic exception was thrown. ---> System.Security.Cryptograp hy.Cryptog raphicExce ption: Access is denied.
at Microsoft.Exchange.Security.Cryptogr aphy.X509C ertificate s.TlsCerti ficateInfo .CAPIAddAc cessRule(X 509Certifi cate2 certificate, AccessRule rule)
at Microsoft.Exchange.Security.Cryptogr aphy.X509C ertificate s.TlsCerti ficateInfo .AddAccess Rule(X509C ertificate 2 certificate, AccessRule rule)
at Microsoft.Exchange.Management.System Configurat ionTasks.M anageExcha ngeCertifi cate.Enabl eForServic es(X509Cer tificate2 cert, AllowedServices services, Boolean requireSsl, ADSystemConfigurationSessi on dataSession, Server server, List`1 warningList, Boolean allowConfirmation, Boolean forceNetworkService)
--- End of inner exception stack trace ---
at Microsoft.Exchange.Management.System Configurat ionTasks.M anageExcha ngeCertifi cate.Enabl eForServic es(X509Cer tificate2 cert, AllowedServices services, Boolean requireSsl, ADSystemConfigurationSessi on dataSession, Server server, List`1 warningList, Boolean allowConfirmation, Boolean forceNetworkService)
at Microsoft.Exchange.Management.System Configurat ionTasks.I nstallExch angeCertif icate.Enab leForServi ces(X509Ce rtificate2 cert, AllowedServices services)
[12/22/2012 15:21:22.0196] [1] The following error was generated when "$error.Clear(); Install-ExchangeCertificate -services "IIS, POP, IMAP" -DomainController $RoleDomainController" was run: "Could not grant Network Service access to the certificate with thumbprint 5A442CC0A9ED647E03DE0C1BCF D7321AEDF2 96EF because a cryptographic exception was thrown.".
[12/22/2012 15:21:22.0196] [1] Could not grant Network Service access to the certificate with thumbprint 5A442CC0A9ED647E03DE0C1BCFD7321AEDF2 96EF because a cryptographic exception was thrown.
[12/22/2012 15:21:22.0196] [1] Access is denied.
I tried the following which I found many times over:
Fire up MMC, add the Local Computer Certificate store into the console, located the certificate for the computers DNS name when you first went to install Exchange 2010 Beta/RC, (It will be in the personal store if you are getting this error), move it into the Trusted Root Certification Authorities. Now you can install, enjoy :).
Still, it keeps giving that error. What to do?
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 5 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.
The Most Valuable Expert award recognizes technology experts who passionately share their knowledge with the community, demonstrate the core values of this platform, and go the extra mile in all aspects of their contributions. This award is based off of nominations by EE users and experts. Multiple MVEs may be awarded each year.