Solved

Cannot import certificate as CSP

Posted on 2016-08-02
2
260 Views
Last Modified: 2016-08-22
Working through an issue with Exchange 2013 and the looping ECP/OWA. Appears to be a results of the certificate not being imported properly.  After exporting with the private and attempting to import with:

certutil -csp "Microsoft RSA SChannel Cryptographic Provider" -importpfx <path_to_cert>

Results in an error:

CertUtil: -importPFX command FAILED: 0x80090029 (-2146893783)
CertUtil: The requested operation is not supported.
0
Comment
Question by:jimime
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 63

Accepted Solution

by:
btan earned 500 total points (awarded by participants)
ID: 41740767
You can check out this which stated
Cause for this issue was that there was additional permission for System on following folder: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys.

After  removing the permissions the issue no longer exists and the certificate can be imported and OWA is not looping anymore.
https://anotherexchangeblog.wordpress.com/2015/11/25/cannot-import-certificate-with-certutil-the-requested-operation-is-not-supported/
0
 
LVL 63

Expert Comment

by:btan
ID: 41765037
The solution is provided as due to address the cause of permission issue.
0

Featured Post

Free eBook: Backup on AWS

Everything you need to know about backup and disaster recovery with AWS, for FREE!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
This article explains how to install and use the NTBackup utility that comes with Windows Server.
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
how to add IIS SMTP to handle application/Scanner relays into office 365.

737 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question