Solved

Cannot import certificate as CSP

Posted on 2016-08-02
2
135 Views
Last Modified: 2016-08-22
Working through an issue with Exchange 2013 and the looping ECP/OWA. Appears to be a results of the certificate not being imported properly.  After exporting with the private and attempting to import with:

certutil -csp "Microsoft RSA SChannel Cryptographic Provider" -importpfx <path_to_cert>

Results in an error:

CertUtil: -importPFX command FAILED: 0x80090029 (-2146893783)
CertUtil: The requested operation is not supported.
0
Comment
Question by:jimime
  • 2
2 Comments
 
LVL 62

Accepted Solution

by:
btan earned 500 total points (awarded by participants)
ID: 41740767
You can check out this which stated
Cause for this issue was that there was additional permission for System on following folder: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys.

After  removing the permissions the issue no longer exists and the certificate can be imported and OWA is not looping anymore.
https://anotherexchangeblog.wordpress.com/2015/11/25/cannot-import-certificate-with-certutil-the-requested-operation-is-not-supported/
0
 
LVL 62

Expert Comment

by:btan
ID: 41765037
The solution is provided as due to address the cause of permission issue.
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question