Solved

Cannot import certificate as CSP

Posted on 2016-08-02
2
176 Views
Last Modified: 2016-08-22
Working through an issue with Exchange 2013 and the looping ECP/OWA. Appears to be a results of the certificate not being imported properly.  After exporting with the private and attempting to import with:

certutil -csp "Microsoft RSA SChannel Cryptographic Provider" -importpfx <path_to_cert>

Results in an error:

CertUtil: -importPFX command FAILED: 0x80090029 (-2146893783)
CertUtil: The requested operation is not supported.
0
Comment
Question by:jimime
  • 2
2 Comments
 
LVL 63

Accepted Solution

by:
btan earned 500 total points (awarded by participants)
ID: 41740767
You can check out this which stated
Cause for this issue was that there was additional permission for System on following folder: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys.

After  removing the permissions the issue no longer exists and the certificate can be imported and OWA is not looping anymore.
https://anotherexchangeblog.wordpress.com/2015/11/25/cannot-import-certificate-with-certutil-the-requested-operation-is-not-supported/
0
 
LVL 63

Expert Comment

by:btan
ID: 41765037
The solution is provided as due to address the cause of permission issue.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out what you should include to make the best professional email signature for your organization.
This article explains how to install and use the NTBackup utility that comes with Windows Server.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question