Thawt certificate issue with TMG web listner


  • Hi,

    I have just bought new ssl certificate for domain from thawt. We already have ssl certificate installed at TMG server which is running fine and going to expire on 15/1/13

    I have installed the new certificate on windows 2008 R2 (SP1). But when I go to web listener and select certificate the certificate is marked red and its validity is invalid and I found the following error in the below box

    Server name     certificate store                                                                  private key

    Edn-tmgs-01    correctly installed (local machine personal)                     Incorrect key type

    I can’t understand why it’s giving the problem of incorrect key type.

    I also tried to troubleshoot via certutil command but received the following error

    system32>certutil -f -repairstore my 702xxxxxxxxxxxxxxxxx

    ================ Certificate 0 ================

    Serial Number: 702axxxxxxxxxxxxxxxxxxxxx

    Issuer: CN=Thawte DV SSL CA, OU=Domain Validated SSL, O=Thawte, Inc., C=US

     NotBefore: 1/8/2013 12:00 AM

     NotAfter: 1/16/2016 11:59 PM

    Subject:, OU=Domain Validated, OU=Thawte SSL123 certific

    ate, OU=Go to

    Non-root Certificate


    Cert Hash(sha1): b1 ca xxxxxxxxxxxxxxxxxx

      Key Container = {8xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx}

      Unique container name: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx


      Provider = Microsoft Strong Cryptographic Provider

    Private key is NOT exportable

    Signature test passed

    CertUtil: -repairstore command completed successfully.

    Please help me to rectify the issue



    • Edited by Mahmoodch Thursday, January 10, 2013 12:58 PM
    Thursday, January 10, 2013 11:04 AM


All replies