Improve company productivity with a Business Account.Sign Up

x
?
Solved

AD SSL Certificate

Posted on 2013-06-02
5
Medium Priority
?
260 Views
Last Modified: 2013-08-12
Hi,

We have a SSL certificate for server authenticate for Citrix. I need to replace the old one with a new one. I have renewed it but not sure how to get the new one installed, in the personal store. Please find the figure attached.
Capture.JPG
0
Comment
Question by:ajoyrajan
5 Comments
 
LVL 17

Expert Comment

by:Kent Dyer
ID: 39215352
Are you running NFuse?  There is a difference between personal store and computer store..  When you run the MMC to add in the computer certificates, you will probably want to use computer store and not personal store to manage certificates..  If it is part of NFuse, you will probably need to add the cert to IIS as well..  It has been a long time since I played with Citrix, so I am not sure about publishing the certs, but that may need to be looked at too.

HTH,

Kent
0
 
LVL 1

Author Comment

by:ajoyrajan
ID: 39215358
it is not NFuse. It is just used for some users outside the organization to change their password over the internet.
0
 
LVL 15

Expert Comment

by:jerseysam
ID: 39215522
0
 
LVL 1

Author Comment

by:ajoyrajan
ID: 39218080
it is not on a IIS. There is no IIS installed on the DC.
0
 
LVL 31

Accepted Solution

by:
Paranormastic earned 1500 total points
ID: 39223498
I think kdyer is on the right track, here is something specific for you to do:

1. Use the "Run as Administrator" option to open a cmd box
2. cd into the directory where your certificate is saved
3. certutil -addstore my FILENAME.CER
   (replace FILENAME.CER with your certificate's filename.  note: 'my' is the actual term to use - it is not meant as a variable in this case)

4. certutil -dump FILENAME.CER | findstr /i /c:"serial"
5. Copy the value of the serial number from the output
6. certutil -repairstore my SERIAL_NUMBER
    (paste the serial number in place of SERIAL_NUMBER)

Check to see if you can find it now.  This will put the certificate in the machine context of the Personal ("my") store.  If you do it via GUI there is a decent chance you put it in the user context of the Personal store, which is the personal store that kdyer was trying to explain about.  The second part will re-associate the private key with the certificate - this may be an unnecessary step, but it frequently fixes issues where a certificate is not showing up & it doesn't hurt anything to do it anyways, so I recommend just doing it anyways.
0

Featured Post

Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

So you need a certificate so you can offer SSL encryption.  But which one should you get?  There are so many choices out there! Here is a generic overview of the main types of SSL certificates sold by the majority of commercial Certification Auth…
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
To export Lotus Notes to Outlook PST or Exchange and Domino Server files to Exchange Server or PST files with ease, go for Kernel for Lotus Notes to Outlook conversion tool. Through the video, you can watch the conversion process. A common user with…
Watch the software video of Kernel Import PST to Office 365 tools which can easily import PST and OST files to Office 365 for bulk mailboxes. The process of migration is simple and user can map source and destination mailboxes and easily import data…

588 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question