Wednesday, 29 May 2013

Certificate may not have a private key that is capable of key exchange or the process may not have access rights for the private key

When we add certificate into IIS\Server Certificates, please make sure you have given 'Read' permission for the users that's hosting your web service/site.

Start MMC and add the Certificate Snap-in, selecting the right container owner for your SSL certificate. Find the certificate (it's probably in the personal store), right click on it and choose All Tasks > Manage Private key. Grant read access to the private key to the user hosting your service.

No comments: