Cannot get Signed SSL certificate into the right place in SBS 2011

Posted on 2015-01-12
Last Modified: 2015-01-25
Been mucking around with SSL certificates for hours.

Long time since I've done this.

Ordered certificates, downloaded, right-clicked on, and installed. (GoDaddy)

Kept getting errors on remote connectivity Analyzer.

Realized that it wasn't using my purchased certificate.

It's in personal, When I try and export it, it won't take all its properties and the import fails.

I followed GoDaddy's Article at:

When I get to to #23, I do not see "Complete Pending Request..."
Question by:MJCS
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 2
  • +3
LVL 29

Expert Comment

ID: 40545944
Ok so from what you are saying it seems like you have already processed the request.

Are you running all this on the same server you need to install the certificate on ?

You indicated the certificate is now installed in personal, verify it has the private key installed
You can do this by double clicking the certificate (you should see text that says "You have a private key ..."

Once this is done simply run the fix my network wizard and point to the new certificate you just got from godaddy.

Author Comment

ID: 40545946
Ran the wizard, it only sees the self-signed key. Then says it can't fix it, restart certificate service and retry.

I rebooted

LVL 29

Assisted Solution

becraig earned 100 total points
ID: 40545950
Did you see an indication that they private key is installed for the new certificate when you opened it in the mmc ?

winkey + r
Add Remove Snap in
Local Computer
Expand Personal

If the cert is present look to see if they private key is present.

If not ask to have it rekeyed, or simply do a repair on the certificate with the following command
certutil -repairstore MY serialnumber (obtained from the details tab in the new certificate)

Then try the wizard again.
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.


Author Comment

ID: 40545993
Network repair wizard?
LVL 29

Expert Comment

ID: 40545999
The fix my network wizard once you're able to get the private key repaired.

Expert Comment

by:Michael Zehr
ID: 40546143
Hi, did you Import the godaddy intermediate certificate?
LVL 63

Assisted Solution

by:Simon Butler (Sembee)
Simon Butler (Sembee) earned 100 total points
ID: 40546408
The primary reason the wizard will not see your certificate is due to a common name mismatch.
The wizard only looks at the common name.

Therefore if the wizards in SBS were run in their default configuration, the common name it wants to see is If the common name is or even then the wizard will not see the certificate and you cannot choose it.

With an SBS server, it is best to use everywhere, as per the wizards expectation. It also makes following any tutorials easier.
However if you created the SSL certificate request in Exchange 2010 and didn't change the configuration, then the common name will be (ie the root of the domain) rather than

LVL 35

Assisted Solution

by:Cris Hanna
Cris Hanna earned 200 total points
ID: 40546411
This article was written by a member of the SBS team.   It works exactly the same for SBS 2011 as it does on SBS 2008  Installing a GoDaddy Standard SSL Certificate on SBS 2008

Assisted Solution

Flipp earned 100 total points
ID: 40548129
Not sure if this applies to your cert or not, but explains how to have a cert to show in SBS wizards when installing a new cert.
Bailed me out a number of times :)
LVL 35

Assisted Solution

by:Cris Hanna
Cris Hanna earned 200 total points
ID: 40548141
I didn't see anything in the original post to indicate that this is a wildcard cert

Accepted Solution

MJCS earned 0 total points
ID: 40559804
I appreciate all the comments!

I deleted the certificate and re-ran through GoDaddy's step-by-step. I must have previously done a step wrong because it worked for me that time.

Author Closing Comment

ID: 40568984
I've credited the helpful advice, but ultimately it was fixed by re-running the wizard.

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Suggested Courses
Course of the Month9 days, 19 hours left to enroll

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question