Problem Importing a certificate using trusted domain ID

Yankee30 206 Reputation points
2021-10-26T13:16:46.25+00:00

Dmz.com and internal.com domains are in external trust

Logged into a server W2k19.dmz.com(behind LB/FW) domain with a user id from internal.com domain internal\UserA
When trying to import a certificate using current user account it gives me an error.

Error: An internal error occurred. Either the user profile is not accessible or the private key that you are importing might require a cryptographic service provider that is not installed on your system.

Also if I move the same server to a network not be behind LB and log in with a user id from internal.com domain internal\UserA. Importing a certificate using current user account works just fine.

But if I log in to the same server W2k19.dmz.com using id from same domain Dmz\UserB and try to import the certificate using current user account it works just fine.

I’m thinking something on the LB or firewall is blocking but what could it be ?

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,458 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,857 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Limitless Technology 39,351 Reputation points
    2021-10-27T07:48:06.057+00:00

    Hello Yankee30,

    Recently Microsoft published an article regarding this known issue and how to workaround:

    Error when you import an SSL .pfx file into the local computer personal certificate store by using IIS Manager
    https://learn.microsoft.com/en-us/troubleshoot/iis/cannot-import-ssl-pfx-local-certificate

    --------------------------------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept as answer--

    0 comments