Citrix Storefront 1912 - How to bind/ Repair private key with New SSL certificate for Storefront server.

Citrix Storefront 1912 - How to bind/ Repair private key with New SSL certificate for Storefront server.

book

Article ID: CTX316641

calendar_today

Updated On:

Description

Private key is missing  the SSL certificate.

image.png

Instructions

Steps to Recover the Private Key:

1. Locate your Server Certificate file by opening Microsoft Internet Information Services Manager, then on the right side select Tools > Internet Information Services (IIS) Manager.
image.png
2. Once in IIS Manager, select your server, then on the right side, Server Certificates. You will see all certificates currently on that server. Scroll over the certificate you are trying to install, right click, then select View.
image.png
3. There, you can view the certificate information. As you can see, there is no indication of a good correspondence with the private key.

  4. Click the Details tab. Write down the serial number of the certificate.
image.png

  5. We will need to recover the private key using a command prompt. In order to recover the key, we must do so using command prompt as an administrator. To do so, slick Start, then on then open all App. Under Windows System, find Command Prompt. Right click Command prompt and then Run as administrator. Confirm the action and continue.

  6. Make sure you are on the right directory in command prompt.
   e.g., if your server directory is “c:/users/srv2012_r2_std_x64”, on the command line type “cd c:/users/srv2012_r2_std_x64”. Note that “cd” is the command used to change directories in command prompt.

  7. Now that we are in the right place, enter the following command at the prompt:  certutil –repairstore my <serial number> where <serial number> is the serial number obtained in Step 2 with spaces removed.

image.png

 8. If Windows is able to recover the private key, you see the message:
CertUtil:  -repairstore command completed successfully.


image.png

Environment

Citrix is not responsible for and does not endorse or accept any responsibility for the contents or your use of these third party Web sites. Citrix is providing these links to you only as a convenience, and the inclusion of any link does not imply endorsement by Citrix of the linked Web site. It is your responsibility to take precautions to ensure that whatever Web site you use is free of viruses or other harmful items.

Issue/Introduction

Reference to repair the private key to the New Certificate.

Additional Information

https://docs.microsoft.com/en-us/troubleshoot/iis/assign-certificate-private-key
Powered by Wolken Software