Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

"No certificates configured on this server" error message when you try to select an SSL certificate in the ISA Server 2000 Management Console


View products that this article applies to.

Symptoms

When you use the Microsoft Internet Security and Acceleration Server (ISA) 2000 Management Console to select a Secure Sockets Layer (SSL) certificate for a new listener in the ISA Server Properties dialog box, the SSL certificate is not recognized, and you receive the following error message:
There are no certificates configured on this server.

↑ Back to the top


Cause

This issue occurs if the certificate was imported without a private key or if it was imported to the wrong certificate store.

↑ Back to the top


Resolution

To resolve this issue, make sure that you have imported the correct private key file for the Web site certificate. Also make sure that the private key file is imported to the local computer certificate store instead of to the Web Proxy service certificate store.

Note The private key file is a .pfx file.

You import a certificate to the Web Proxy service certificate store only when you want to permit the Web Proxy service to use client certificate authentication to authenticate against a Web site on your internal network. For additional information about publishing a Web site that requires clients to use certificates for authentication, click the following article number to view the article in the Microsoft Knowledge Base:
281106� How to use a certificate for SSL authentication within a Web publishing rule
For additional information about how to configure Internet Security and Acceleration Server to host Web sites using SSL, click the following article number to view the article in the Microsoft Knowledge Base:
292569� How to set up Internet Security and Acceleration Server to host Web sites by using the Secure Sockets Layer protocol
When you have imported the certificate and the private key to the local computer certificate store, follow these steps to correctly configure the Incoming Web Requests listener:
  1. Click Start, point to Programs, point to Microsoft ISA Server, and then click ISA Server Management.
  2. In the ISA Management Console, expand Servers and Arrays, right-click your ISA server or array, and then click Properties.
  3. In the ISA Server Properties dialog box, click the Incoming Web Requests tab. To add a new interface to listen for requests for the internal Web server, click Add. If the interface already exists, click the interface that you want the certificate to be associated with, and then click Edit.
  4. In the Add/Edit Listeners dialog box, click the internal server name in the Server list, and then click the IP Address of the internal server in the IP Address list.
  5. In the Add/Edit Listeners dialog box, click to select the Use a server certificate to authenticate to Web clients check box, and then click Select to select the certificate.
  6. In the list of certificates, click the certificate that you imported, and then click OK.
  7. The certificate name now appears in a text box in the Add/Edit Listeners dialog box. Click OK.
  8. In the ISA Server Properties dialog box, click the Incoming Web Requests tab, and then click to select the Enable SSL listeners check box. Click Apply, and then when the ISA Server Warning dialog box appears, click Save the changes and restart the service(s) to restart the Web Proxy service. Click OK.
  9. Click OK to close the ISA Server Properties dialog box.

↑ Back to the top


Status

This behavior is by design.

↑ Back to the top


References

For additional information about using ISA to securely publish multiple Web sites in Microsoft Windows 2000, click the following article number to view the article in the Microsoft Knowledge Base:
300435� HOW TO: Securely publish multiple Web sites by using ISA Server in Windows 2000 and Windows 2003
For additional information about using ISA to securely publish multiple Web sites in Microsoft Windows Server 2003, click the following article number to view the article in the Microsoft Knowledge Base:
323426� HOW TO: Configure the Web Publishing service to work with Internet Security and Acceleration Server in Windows Server 2003
For additional information about publishing SSL Web sites by using Server Publishing, click the following article number to view the article in the Microsoft Knowledge Base:
298900� How to publish SSL Web sites by using Server Publishing

↑ Back to the top


Keywords: KB837348, kbprb, kberrmsg

↑ Back to the top

Article Info
Article ID : 837348
Revision : 2
Created on : 4/12/2004
Published on : 4/12/2004
Exists online : False
Views : 295