I have server 2012 essentials, i installed and have been using successfully a cacert for Anywhere Access, the certificate is coming up for renewal. I found the following instructions saying that basically you have to generate a new certificate request:
Create a new certificate request (in IIS Manager/Server Certificates) and get your new CAcert certificate.
In IIS Manager/Server Certificates, choose Complete Certificate Request and choose the .CER file you created. That will get the certificate into Server Certificates.
Next, right-click on the new certificate and export it to a .PFX file.
Now you have to choose Settings from the Windows Server 2012 Essentials Dashboard and choose Anywhere Access. Under Domain Name click Set up...
Choose the "Use another domain name or domain name service provider" but enter the same domain name as you are already using. Then choose the manual setup option - this will allow you to import the .PFX file you created above. After it completes the setup it will ask you to run the Repair Anywhere Access option - do so and it should set everything up with the new certificate.
I follow these instructions and all seems ok until that last bit when i import the pfx file into Anywhere Access, i get the following error:
"You can import only trusted SSL certificates. Get a trusted SSL certificate and then import the trusted certificate"
Please can someone help me?
Sounds like the CA or Sub-CA changed\was not part of the chain anymore.
Have you tried to import this cert into your laptop's store and double click on it to check the certificate chain?