ILoveNE
asked on
Importing Exchange 2013 SSL Certificate: Access denied.
Hello Experts,
After a long ardous journey I am almost done with the deployment of Exchange 2013 at our organization but i've hit a snag along the way and for the life of me I cannot figure out why this issue is occuring.
I am trying to import a SAN certificate and when doing It fails with the following message:
"The imported certificate file for server 'EX13Server' failed to access for the following reason: Access to the path '\\servershare' is denied."
I have given full access permission to everyone for that share. I can access the share from the server, I can read/write from it. I am completely puzzled as to why it will not let me import that certificate.
Anyone have any ideas what I may be doing wrong?
Thank you.
After a long ardous journey I am almost done with the deployment of Exchange 2013 at our organization but i've hit a snag along the way and for the life of me I cannot figure out why this issue is occuring.
I am trying to import a SAN certificate and when doing It fails with the following message:
"The imported certificate file for server 'EX13Server' failed to access for the following reason: Access to the path '\\servershare' is denied."
I have given full access permission to everyone for that share. I can access the share from the server, I can read/write from it. I am completely puzzled as to why it will not let me import that certificate.
Anyone have any ideas what I may be doing wrong?
Thank you.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You only require the crt file. Open the MMC and make sure that it is under Computer Account. From there import it into the personal store. You will be asked if you want to make the Private Key exportable, choose Yes.
Once it is imported, run the Enable-ExchangeCertificate cmdlet on the machine. If you have other CAS servers you will also need to expor the cert and import it into the other CAS servers as well.
Will.
Once it is imported, run the Enable-ExchangeCertificate
Will.
ASKER
Thanks for the response will,
I put the certificate under the personal store in the local computer but when I go to exchange it does not show up under certificates. Also, it did not ask me if i wanted to make the private key exportable during the import.
exchange is making me age very rapidly.
I put the certificate under the personal store in the local computer but when I go to exchange it does not show up under certificates. Also, it did not ask me if i wanted to make the private key exportable during the import.
exchange is making me age very rapidly.
When you import a crt file you will be asked. Try it again via the MMC.
Will.
Will.
ASKER
My previous post was refferencing what hapenned when I tried it using the MMC. I was able to import it but it never asked me whether I wanted to make the key exportable.
If you open the EMS and run get-exchangecertificate | ft do you see the cert
Will.
Will.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
.
ASKER
I download it as a .zip file from godaddy and there are two files: one is a security certificate(.crt) and the other file says: gd_iis_intermidiates.p7b
Where in the store do each of these files go if importing them manually through mmc?
thanks as always for your help.