Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Thursday, February 13, 2020 12:43 PM
Hello all,
I am new to an IT role in a school and have a server running 2016 core edition used for Direct Access. The SSL certificate was a free 90 day one. It expired and I wanted to replace with a newly purchased domain wildcard .cer file.
I generated the request on my laptop using an online generator from namecheap.com as I couldn't work out how to do it from the DA server without a GUI. I have a text file with the private key.
I loaded MMC on my laptop and imported the certificate to the personal store of the server running DA.
It's not showing the key icon. I have the key but can't work out how to import. I have tried a few suggestions online but they didn't work.
I tried running the commands:
certutil -repairstore my 'thumbprint'
certutil -repairstore my 'serial'
But I receive a Windows security dialogue asking me to connect a smart card?
Can anyone advise as this is something I haven't done before and i'm not familiar with using Core edition which is proving difficult for me.
Many Thanks in advance.
Gary
All replies (4)
Friday, February 14, 2020 7:47 AM âś…Answered | 1 vote
Hi,
>>It's not showing the key icon. I have the key but can't work out how to import.
If you have correctly imported the SSL certification?
Please refer the following link about how to import SSL certification:
https://www.sslsupportdesk.com/troubleshooting-missing-ssl-private-key-in-windows-server/
Please Note: Since the website is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
If you still do not see a private key associated with your certificate then please perform the troubleshooting method in the article.
Hope this can help you.
Have a nice day!
Ellen
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Friday, February 14, 2020 9:51 AM
Hi Ellen,
Thanks for replying, much appreciated.
I contacted the company and they told me that it was because I had imported the .cer file provided originally by e-mail. I had to log in, download the bundle and convert to PKCS#12.
I couldn't import the new certificate using MMC as 'Importing a .pfx or p12 file to a remote certificate store is not supported' (the server is running core edition)
I imported using Powershell and it now seems to be working.
Monday, February 17, 2020 11:15 AM
Hi,
Just checking the current situation of your problem.
Was your issue resolved?
Best regards,
Ellen
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Monday, February 17, 2020 1:31 PM
Hello Ellen,
The certificate has now been imported and on checking using an online, shows as being ok.
I do still have issues but these are different so I have logged a new question.
Many thanks for your help.
Gary