Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. IIS: Export Private Key Option is Grayed When Exporting a Server Certificate

IIS: Export Private Key Option is Grayed When Exporting a Server Certificate

Symptoms

Using the Certificates snap-in in Microsoft Windows 2000 and later, you can do many tasks regarding certificates and certificate management. One of these tasks is exporting server certificates for use in an Internet Information Services (IIS) versions 5.0 and later Web server. In order for a server certificate to be used by the web server, you must export the private key along with the certificate. Without the private key, data encryption (and therefore secure communications) is not possible.


When exporting the server certificate from the server's personal certificate store, you may not have the option to export the private key. If this is the case, when the certificate was imported, the option to allow the private key to be exported may have been unchecked. This is a security measure to prevent a possible compromise of the server's private key. Since this could be a potential security risk, the option to mark the private key as exportable is not checked by default.

↑ Back to the top

Resolution

In order to correct this problem, you will need access to the original certificate backup (.pfx) file. To ensure this problem does not happen in the future (should you want to export the private key again) make sure during the import process that you select the box "mark the private key as exportable."

↑ Back to the top

More Information

For additional information about importing server certificates, click the article number below to view the article in the Microsoft Knowledge Base:
232137 HOW TO: Import a Server Certificate in Internet Information Services 5.0
For additional information about exporting (backing up) server certificates, click the article number below to view the article in the Microsoft Knowledge Base:
232136 HOW TO: Back Up a Server Certificate in Internet Information Services 5.0

↑ Back to the top

Keywords: kbsweptiis6, kbpending, kbprb, kb

↑ Back to the top

Article Info
Article ID : 232154
Revision : 4
Created on : 6/10/2019
Published on : 6/10/2019
Exists online : False
Views : 1349