Microsoft KB Archive/216339

= Using Secure Sockets Layer, Root Certifying Authority Certificates, and Iisca.exe =

Article ID: 216339

Article Last Modified on 6/23/2005

-

APPLIES TO


 * Microsoft Internet Information Server 4.0

-



This article was previously published under Q216339



We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 6.0 running on Microsoft Windows Server 2003. IIS 6.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:

http://www.microsoft.com/technet/security/prodtech/IIS.mspx



SUMMARY
If you use Internet Information Server (IIS) 4.0 with secure sockets layer (SSL) and you install a root certifying authority certificate (other than those issued by well-known third parties, such as VeriSign, Thawte Consulting, or Microsoft), you may need to reinstall the affected root certifying authority certificates after you install SP4. You must do this if you're using Microsoft Certificate Server 1.0, which shipped with the Windows NT Option Pack (NTOP).



MORE INFORMATION
To reinstall the root certifying authority certificate, do the following:

1. Open Internet Explorer 4.0.

2. Browse to the root certifying authority certificate that you want to add.

For example, for Microsoft Certificate Server, go to http://server/certsrv/CertEnroll/cacerts.htm and click the root certifying authority certificate you want.

3. Select Open this file from its current location, and then click OK.

4. Click Install certificate.

5. After the Certificate Manager Import wizard has started, click Next.

6. Select Place all certificates into the following store.

7. Click Browse, and then click Show physical stores.

8. Expand the Trusted Root Certification Authorities, select Local Computer, and then click OK.

9. Click Next, and then click Finish.

10. Restart your Web server.

NOTE: There is no longer any need to use the Iisca.exe tool.

Additional query words: iisca SP4 certificate ca

Keywords: kbhowto kbfea KB216339

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.