Re: Request certificate wizard:What am I doing wrong ? Verisign certificate - Win2003

From: Miha Pihler [MVP] (mihap-news_at_atlantis.si)
Date: 02/02/05

  • Next message: James Perks: "iis 6 exception issue" 
    Date: Wed, 2 Feb 2005 18:16:00 +0100

    Hi Marlon,

    Since you are requesting from VeriSign you will have to save the request to
    a file (you select "Prepare the Request Now, but send it later"). This will
    save the request into a file (you will be able to provide path on a drive
    and name for the request). Once done you can open the request file and copy
    and paste the request to VeriSign website to continue your process. 

    -- 
Mike
Microsoft MVP - Windows Security
"Marlon Brown" <marlon_brownj@hotmail.com> wrote in message 
news:OTw5JiMCFHA.1408@TK2MSFTNGP10.phx.gbl...
>I need to install SSL certificates for my OWA1 and OWA2 servers, that will 
>be configured as NLB.
> As far as I know, I understand that I need to generate a .CSR from both 
> WIn2003 boxes and submit them to Verisign.
>
> If the above procedure is correct, I go to the Windows 2003 and when I 
> click the "Certificates" mmc snap-in, under "Personal" and select "Request 
> New Certificate" the message appears:
>
> The wizard cannot be started because of one or more of the following 
> conditions:
> - There are no trusted CA's available
> - You do not have the permissions to request certificates from the 
> available CAs
> - The available CAs issue certificate for which you do not have 
> permissions
>
> What am I doing wrong ? I am logged on as an domain admin, box is joined 
> to domain accordingly. Win2003 Ent.
>
>
>
  • Next message: James Perks: "iis 6 exception issue"

    Relevant Pages

    • Re: IIS newbie trying to recover lost pending request for certificate
      ... >>I created a request for an SSL certificate in IIS 5.0. ... > I might recommend re-submitting a new request to Verisign. ... > Verisign is one of the more expensive cert providers. ...
      (microsoft.public.inetserver.iis.security)
    • Re: IIS 4 - renewing SSL certificate fails
      ... > When attempting to renew a certificate with Verisign for> SSL connections on Windows NT 4 with IIS 4, the attempt> fails because it says the request does not match the> response. ... The request does not include a> secondary OU "Terms of service at www.verisign.com/rpa",> but the response includes this line. ...
      (microsoft.public.inetserver.iis.security)
    • RE: CSR Created on Wrong Web Site
      ... only work with the request it was created with. ... ceritificate from that site, send it to Verisign, then install the cert. ... You wouldn't be able to use the certificate with another site unless you ... © 2001 Microsoft Corporation. ...
      (microsoft.public.inetserver.iis.security)
    • Re: VeriSign Browser Emulation mode PKCS#10 Request
      ... I created a PKCS10 request, contaning the public key, and the DN had ... this question is too specific to verisign. ... > Note that you can place a Netscape SPKAC into this NVP instead of a ...
      (sci.crypt)
    • Re: IIS newbie trying to recover lost pending request for certificate
      ... > I created a request for an SSL certificate in IIS 5.0. ... I might recommend re-submitting a new request to Verisign. ... first 30 days of purchase, they'll issue you a new one. ...
      (microsoft.public.inetserver.iis.security)