Article ID: 824035
Article Last Modified on 11/24/2005
APPLIES TO
- Microsoft Internet Information Services 5.0
- Microsoft Internet Information Services 5.1
- Microsoft Internet Information Services 6.0
SYMPTOMS
When you try to access a site that is hosted in Microsoft Internet Information Services (IIS) and that is configured to use Secure Sockets Layer (SSL) by using the HTTPS protocol, you may receive the following error message:
The following error message is logged in the Web server event logs:
CAUSE
This problem occurs because the Web site has been bound to a certificate that does not have a matching private key. If you try to export this certificate from the Certificates Microsoft Management Console (MMC), you do not have the option to export the private key. When you try to export the certificate, you receive the following warning message:
To troubleshoot SSL issues, use the new SSL Diagnostics tool. For more information, visit the following Microsoft Web site:
RESOLUTION
To resolve the problem, create a new certificate with a private key. To do this, follow these steps:
- Remove the current certificate that does not have a private key. For more information about how to remove the current certificate, click the following article number to view the article in the Microsoft Knowledge Base:
232167 How to remove a server certificate from an Internet Information Services 5.0 Web site
- Obtain and install the new certificate with private key. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
290625 How to configure SSL in a Windows 2000 IIS 5.0 test environment by using Certificate Server 2.0
Note The original certificate may be repairable (from the server that initially requested the Certificate). For more information about how to repair a certificate, click the following article number to view the article in the Microsoft Knowledge Base:
889651 How to assign a private key to a new certificate after you use the Certificates snap-in to delete the original certificate in Internet Information Services
Additional query words: SSL Certificate Private Key
Keywords: kbprb KB824035