Microsoft KB Archive/295329

= How To Renew VeriSign SSL Certificate with New Key in IIS 5.0 MMC =

Article ID: 295329

Article Last Modified on 7/2/2004

-

APPLIES TO


 * Microsoft Internet Information Services 5.0

-



This article was previously published under Q295329



SUMMARY
If you try to renew a Secure Sockets Layer (SSL) Server Certificate from VeriSign, and you want to generate new keys, the Internet Information Server (IIS) 5.0 Microsoft Management Console (MMC) tries to connect to your local Certificate Authority that is configured in your domain. This article explains how to renew an SSL Server Certificate from VeriSign with a new key set.



Step-by-Step Example
 Create a new site in the IIS 5.0 MMC Snap-in. Right-click the new site, and then click Properties. On the Directory Security tab, click Server Certificate to request a new certificate. In the Certificate Wizard, retain the same fields as the old certificate so that only your private and public keys change. Cut and paste the newly created Certificate Request information to VeriSign. When you receive a text file for your request, process the pending request in the IIS 5.0 MMC. To do this, follow these steps:  Right-click the new site, and then click Properties.</li> On the Directory Security tab, click Process the pending request and install the certificate.</li> Click the file that you received from VeriSign for your request, and click Next. Verify that the values are correct, click Next, and then click Finish.</li></ol> </li></ol>

This creates a new certificate with new keys. You can use this certificate for your old site because the new certificate has the same &quot;Common name&quot; as the old certificate, so it still matches your server's name.

Keywords: kbhowto KB295329

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.