cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Go to solution
Highlighted

Problem installing certificate in IIS 7 with Windows Server 2008

Hello, I have a problem installing the certificate in the IIS, in the MMC console I import the .CRT file, all perfect. When I go to IIS and select "Complete request", I select my .CRT file again but when I finish it I get the error "An incorrect ASN1 tag value was found". Could someone help me with any ideas?

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Resolver III
Solution

Re: Problem installing certificate in IIS 7 with Windows Server 2008

"Complete request" is for uploading a CRT file you receive from your Certificate Authority. 

 

The content of your CRT file - when you open it in a text editor, is it readable and does it start with something like " ------ CERTIFICATE ".... ?  If so then the file is NOT in a correct format and you need to convert it (e.g., here - https://www.sslshopper.com/ssl-converter.html )

 

I assume that you generated your certificate request with IIS, submitted it to a CA and received a new certificate. If you create the request (CSR) elsewhere, you will also need to import a private key .... but that gets a bit more complicated.

 

———

I've worked around (not only) SSL security for over 20 years in enterprises and startups. 

I am now running an HTTPS expiry management service KeyChest.net

 

https://www.digicert.com/csr-ssl-installation/iis-7.htm

View solution in original post

1 REPLY 1
Highlighted
Resolver III
Solution

Re: Problem installing certificate in IIS 7 with Windows Server 2008

"Complete request" is for uploading a CRT file you receive from your Certificate Authority. 

 

The content of your CRT file - when you open it in a text editor, is it readable and does it start with something like " ------ CERTIFICATE ".... ?  If so then the file is NOT in a correct format and you need to convert it (e.g., here - https://www.sslshopper.com/ssl-converter.html )

 

I assume that you generated your certificate request with IIS, submitted it to a CA and received a new certificate. If you create the request (CSR) elsewhere, you will also need to import a private key .... but that gets a bit more complicated.

 

———

I've worked around (not only) SSL security for over 20 years in enterprises and startups. 

I am now running an HTTPS expiry management service KeyChest.net

 

https://www.digicert.com/csr-ssl-installation/iis-7.htm

View solution in original post