Re: exporting key

From: Miha Pihler [MVP] (mihap-news_at_atlantis.si)
Date: 04/27/05

Next message: alexk: "Re: exporting key"
Previous message: alexk: "exporting key"
In reply to: alexk: "exporting key"
Next in thread: alexk: "Re: exporting key"
Reply: alexk: "Re: exporting key"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 27 Apr 2005 19:43:29 +0200

Hi Alex,

Once the certificate request is complete open MMC on the server where your
certificate is. Add Certificates Snap-In for Computer account
(http://freeweb.siol.net/mpihler/certcomputer.jpg) and follow the wizard.
Drill down under Personal -> Certificates
(http://freeweb.siol.net/mpihler/certmmc.jpg). Here locate the certificate
you want to export and right click on it. Select the export option and
follow the wizard. In the wizard select "Yes, export the private key"
(http://freeweb.siol.net/mpihler/exportpriv.jpg).

In the end you should have a file with .pfx extension (not a file with .cer
extension).

I hope this helps.

-- 
Mike
Microsoft MVP - Windows Security
"alexk" <alexk@mailinator.com> wrote in message 
news:1114618499.680663.181610@z14g2000cwz.googlegroups.com...
> Good day,
> When creating a new certifcate requets via the IIS wizard, how the
> corresponding private key can be exported to a file? The key surely
> exists, since the cert viewer tells "you have a private key for this
> certificate" - after the certifcate is approved. (And of course the key
> exists, otherwise how an SSL session with my server could be ever
> established ... )
>
> Thank you, Alex.
>

Next message: alexk: "Re: exporting key"
Previous message: alexk: "exporting key"
In reply to: alexk: "exporting key"
Next in thread: alexk: "Re: exporting key"
Reply: alexk: "Re: exporting key"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Private key generation
... As I wrote in my first answer to that thread - there are many situations when key pair is generated on trusted server. ... identity based encryption) simply requires generation of private key on server... ... High assurance keys (especially these that afterward are split in multiple shares using secret sharing schemes) may also require use of specialized equipment and computers that runs in a tempest/EM shielded locations. ... Default scenario supported by Microsoft Certificate Server is the most standard CA mode when CA just signs X509 certificate with emedded public keys. ...
(microsoft.public.dotnet.security)
Re: SBS 2k3 CA - How can I issue a *.ourdomain.com certificate ?
... i got a messagen saying that i can't issue a wildcard certificate. ... I.How many NIC are installed on the SBS 2003 server box? ... Rerun CEICW to see if the problem will be resolved. ... Select Reinstall for Server Tools, and follow the wizard to finish ...
(microsoft.public.windows.server.sbs)
Re: Certificate key access under Network Service in IIS 6
... Haven't done that because I've been remoted in to the customer's server. ... It is likely the private key file but might be a registry key as well. ... I can get the signing process to work if I have the IIS Application Pool configured to run under SYSTEM but running under the preferred NETWORK SERVICE account the private key access of the certificate fails. ...
(microsoft.public.dotnet.security)
Re: How to use certificates?
... I expect that server will know the client public key, ... > private key for that certificate. ...
(microsoft.public.dotnet.framework.webservices.enhancements)
Re: IIS 6.0 SSL Certificate Difficulties
... that is just a plain text file with encrypted detail of your server detail. ... do you export the private key as well? ... > certificate from the IIS Snap-in it says that "You have a private key that ... > Another symptom is that when we create the request on the 2003 server, ...
(microsoft.public.inetserver.iis)