Re: Microsoft Certificate Services
From: Pent (pent)
Date: 11/05/03
- Next message: trinitypete: "Re: Microsoft Certificate Services"
- Previous message: Kaido Kert: "Supporting CRYPT_NOHASHID"
- In reply to: trinitypete: "Re: Microsoft Certificate Services"
- Next in thread: trinitypete: "Re: Microsoft Certificate Services"
- Reply: trinitypete: "Re: Microsoft Certificate Services"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 5 Nov 2003 11:09:23 -0500
.cer doesn't have a private key. .pfx file normally has certificate and
private key.
When you generate certificate request in IIS, the private key will be
already stored in the store. So if you get a certificate back from CA for
the certificate request from IIS then after you install the .cer it will be
associated with the original private key.
http://www.microsoft.com/downloads/details.aspx?FamilyId=CABEA1D0-5A10-41BC-83D4-06C814265282
"trinitypete" <support@trinity.com> wrote in message
news:10d601c3a3b3$69ec4070$a301280a@phx.gbl...
> Pent,
>
> Sorry, I should have said, I did import it to the local
> machine personal folder. Then I assign the server
> certificate to IIS SSL - everything seems OK but SLL
> doesn't work. For some reason the private key doesn't get
> imported from the cer file unless it is via the first
> option in the previous mail.
>
> Pete.
>
>
> >-----Original Message-----
> >You have to know where to import it to
> >
> >"trinitypete" <support@trinity.com> wrote in message
> >news:0f5f01c3a3a9$56afd3f0$a301280a@phx.gbl...
> >> Hi all,
> >>
> >> I have a question regarding certificates which I hope
> >> some one can explain. (Win2003 & XP Pro)
> >>
> >> I needed a web server certificate (SSL) so I did the
> >> following:
> >>
> >> IIS - Request certificate to send later, creates text
> >> file.
> >>
> >> Using web UI for Microsoft Certificate Services,
> advanced
> >> request. Submit a certificate request by using a base-
> 64-
> >> encoded CMC or PKCS #10 file, or submit a renewal
> request
> >> by using a base-64-encoded PKCS #7 file. Copy in the
> >> contents of the text file and a certificate is issued.
> >>
> >> This is the bit I need clarifying.
> >> ----------------------------------
> >>
> >> THIS WORKS
> >> If you go back into IIS - server certificate and check
> >> pending request, browse to the certificate file
> produced
> >> by Microsoft Certificate Service - the certificate is
> >> imported along with the private key from the .cer file.
> >>
> >> THIS DOESNT
> >> If you didn't do the above and just install the
> >> certificate from opening the .cer file and selecting
> >> install, or import the certificate via MMC snap in, you
> >> dont get the private keys????
> >>
> >> Any help would be appreciated.
> >> Pete.
> >
> >
> >.
> >
- Next message: trinitypete: "Re: Microsoft Certificate Services"
- Previous message: Kaido Kert: "Supporting CRYPT_NOHASHID"
- In reply to: trinitypete: "Re: Microsoft Certificate Services"
- Next in thread: trinitypete: "Re: Microsoft Certificate Services"
- Reply: trinitypete: "Re: Microsoft Certificate Services"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
