Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2237
  • Last Modified:

Importing SSL Certifcate into IIS 8

I am trying to import an SSL cert that we purchased from GoDaddy into IIS 8, but the certificate keeps getting automatically removed after import.  These are the steps that I'm taking.

Selected: Complete Certificate Request...
Provided the path to the .crt file, gave it a friendly name and selected Personal for the Certificate store and press OK.  The cert appears to be imported successfully, but as soon as I hit refresh or attempt to click on it, it disappears from the Server Certificates.

I am able to import into the Certificate store no problems though.

Any suggestions
0
datadirector
Asked:
datadirector
1 Solution
 
Paul MacDonaldDirector, Information SystemsCommented:
Is there anything special about this certificate?

Do you have all the intermediate certificates for GoDaddy installed?

Don't select "Personal" for the certificate store  - let the server store the certificate itself - and see if that helps.
0
 
MaheshArchitectCommented:
1st of all, let me know if certificate crt file is generated from server where you are trying to import it in IIS ?
If CSR generation server is different from server you are importing, This is expected behaviour.
If this is not the case, have you run sysprep on server post you generated CSR ? In that case also you will face issues while importing certificate.

If this is also not the case try below.
1st of all open local certificate mmc console for current user and ensure that certificate is not there ?
If you found there, then check certificate properties \ details tab and verify that its Enhanced Key usage is set to Server Authentication if it is some else, then it is not SSL certificate. If it is server authentication cert, then just copy into local computer personal store.

if you don't find cert in current user mmc console, then instead of importing certificate through IIS, open custom mmc console, add local computer certificate console there, navigate to personal store and import there and check if its working.
Also post import check certificate properties for EKU (server authentication) and in certificate properties \ General tab "You have private key corresponds to this certificate" is showing.

Mahesh
0
 
datadirectorAuthor Commented:
The IIS cert was originally generated on a different server running a different version of IIS. I ended up just regenerating a new request on the server I was trying to import it to. Once I did that I submitted a request to rekey the cert using the newly generated csr.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now