My existing SSL certificate has expired, and needed to be renewed. I've received my new cert, and imported to my server. I've tried a few different ways to replace my existing cert:
- Import into local machine store, update IIS bindings. Update RD Gateway cert. Update SSTP binding.
- Run Domain Config wizard, use existing cert, supply newly received cert PFX. Run repair on access anywhere.
No matter which method used, while the new cert works for a day or 2, it eventually reverts to the machines self signed cert resulting in errors. I can't find an event that correlates to reverting certificates, so I'm at a real loss as to what's taking place.
Any guidance on how to complete this scenario properly?
Guidance is few and far between right now.
Best thing to remember is that the 'renewal' is essentially a term for the process, but not what you're doing.
Im paraphrasing slightly, but the process is identical to purchasing a new SSL, it just happens to have the same name.
So, you can go through the process here:
I am exactly in the same situation as "tsull360". I have to renew my existing certificate from GoDaddy and I don't find any instructions how to do it. What is the exact procedure on how to renew an existing certificate using Anywhere Access wizards? Meanwhile, I have looked at your "RWA & SSL Configuration Decision-o-Matic" chart from your site (http://titlerequired.com/2013/02/06/manually-creating-a-certificate-request-windows-server-essentials-sbs/) and figured that my newly issued certificate has to be imported as a PFX file into W2k12srve. Is this correct? If so, how do I manage to get this PFX file from GoDaddy?
Tried to get an answer to this earlier, with no success. I just ended up creating a new cert request and going through the wizard again :(
Here's what worked for me for 2012 Essentials:
Start the Essentials dashboard. In the upper right corner, click on Settings. In the Settings dialog, in the left column, click on Anywhere Access. Under Domain name, click "Set up" to start the wizard.
Getting Started: (No settings)
Configure your domain name: Import a new trusted SSL certificate
Set up a trusted SSL certificate: "remote" is already there. Choose I want to purchase a trusted SSL certificate for the domain name.
Generate a certificate request: Copy
[get the cert from your provider]
A trusted SSL certificate reqeust is in progress...: I have the trusted SSL certificate information from my certificate provider
Import the trusted certificate: Copy and paste...
Repair as suggested in last pane
It's not clear to me if this is creating a new private key or reusing the old one. I guess it doesn't matter. Regardless, start Certificate Manager for the Computer and export the new cert to PFX with the private key. Also, I delete the previous year's certificate while in Certificate Manager. At least with SBS 08, if you didn't do that, it would keep putting warnings in the event log.