An unknown certificate on my IIS server.


I am looking at a Windows 2012 IIS server and I see a certificate WMSvc-myiisserver that has an expiration date of 1/20/2015 and it is using SHA1.

I do not recall I ever deploy that certificate on the server.

Would someone advise if that cert is always there by default?  Where do I go to see the vendor of that certificate?

Please see the attached.  

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

viktor grantExchange ServersCommented:

It is by default installed with IIS but it is not used. Normally it will use different certificate, self-signed,... but this certificate is not used.

What roles do you have in this server?

nav2567Author Commented:
I am an admin.  I have been trying to find a KB that talks about this and show it to a manager but I am not able to find it.  

Is it okay if I remove it?
Hypercat (Deb)Commented:
That's a self-signed certificate. If you go to the General tab and look at the "Issued by" line, it will show the local server name.  It is an internally-generated certificate for the website management services.
Acronis True Image 2019 just released!

Create a reliable backup. Make sure you always have dependable copies of your data so you can restore your entire system or individual files.

nav2567Author Commented:
The cert is on sha1.  How can that be upgraded to sha2?

What is this self-signed for?
Hypercat (Deb)Commented:
As I said above, this certificate is intended only for the IIS website management services.  It's internal only and is designed to allow for remote users to manage the web services.  The certificate is created automatically when you install the Web Management Services for IIS.  I don't know of any way to change the hash to SHA256.  I have read some methods for creating SHA256 certificates in Windows IIS, but not for this purpose, since this cert is created automatically.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
viktor grantExchange ServersCommented:
The issue seems to be more replies from the author
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft IIS Web Server

From novice to tech pro — start learning today.