Export Exchange 2016 certiifcate error.


i am trying to export the exchange certificate from an Exchange 2016 server but i get the error :
  Special Rpc error occurs on server ***** : The private key couldn’t be exported as PKCS-12. It either couldn’t be accessed or isn’t exportable.”

Any help?

Thank you in advance.
Who is Participating?
Comp_supportConnect With a Mentor Author Commented:
Finally the problem was something else.

I was trying to connect remote and local users to exchange 2016 server.

There was a problem with the local DNS zones and the hosting service of the domain. After fixing that , the users are connected properly.

Thank you for you assistance.
Jeff GloverSr. Systems AdministratorCommented:
Well, it sounds like you didn't mark the key as exportable when you ordered it. I assume this is the Public certificate? Can you export it via the Certificates MMC on the Server? If not, you may have to get it reissued with a new CSR marking the key as exportable.
Comp_supportAuthor Commented:

It is a self-signed key and if remember well , i selected exportable during installation.

In any case i have to create a new certificate ?
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Jeff GloverSr. Systems AdministratorCommented:
If you need to export it and cannot, then yes. If it is a self-signed cert then it is easier I guess. We never use them so I cannot help you there.
Adam BrownSr Solutions ArchitectCommented:
There isn't really a reason that a Self-Signed Certificate should be exported with the private key included. The private key is only necessary if you are planning to import the certificate for use on a different server, which would be pointless, since the Self-Signed Certificate would only have the server name of the server you're exporting from. It would never be valid on any other server. If you are trying to export it to allow import for the purposes of establishing certificate trust on clients that access the server, you don't need the private key.
Seth SimmonsSr. Systems AdministratorCommented:
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I have recommended this question be closed as follows:

Accept: Comp_support (https:#a42410345)

If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.

Experts-Exchange Cleanup Volunteer
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.