Cannot import certificate as CSP

Working through an issue with Exchange 2013 and the looping ECP/OWA. Appears to be a results of the certificate not being imported properly.  After exporting with the private and attempting to import with:

certutil -csp "Microsoft RSA SChannel Cryptographic Provider" -importpfx <path_to_cert>

Results in an error:

CertUtil: -importPFX command FAILED: 0x80090029 (-2146893783)
CertUtil: The requested operation is not supported.
jimimeAsked:
Who is Participating?
 
btanConnect With a Mentor Exec ConsultantCommented:
You can check out this which stated
Cause for this issue was that there was additional permission for System on following folder: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys.

After  removing the permissions the issue no longer exists and the certificate can be imported and OWA is not looping anymore.
https://anotherexchangeblog.wordpress.com/2015/11/25/cannot-import-certificate-with-certutil-the-requested-operation-is-not-supported/
0
 
btanExec ConsultantCommented:
The solution is provided as due to address the cause of permission issue.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.