- Active Directory (1)
- Backups (10)
- Citrix (7)
- Desktops (14)
- Exchange (9)
- Funny (2)
- General Hardware (13)
- Google (2)
- Intel (2)
- Internet (17)
- Laptops (13)
- Memory (1)
- Microsoft (27)
- Nerdism (3)
- Networking (8)
- Rant (7)
- Registry (3)
- Scripting (3)
- Security (24)
- Servers (11)
- Spam (1)
- SQL (1)
- Storage (9)
- Technical Questions (6)
- Uncategorized (2)
- 13. January 2011: What happened on the Internet in 2010?
- 15. June 2010: Microsoft Warns of Help Flaw in Windows XP, Server 2003
- 20. April 2010: Create bootable USB drive with Server 2008
- 3. March 2010: New IE vulnerability found - Win 2000 and XP
- 15. February 2010: Windows 7 - memory leaks, hangs and freezes detailed
- 14. February 2010: MS10-015 bulletin - possible BSOD with never ending boot cycles
- 7. January 2010: Commvault Simpana 8 - update
- 21. December 2009: Fighting malware, Trojans and a multitude of other web-related threats
- 10. December 2009: Commvault Simpana 8 saving lives, disk space and relieving stress
- 24. November 2009: Windows 7 - Explorer.exe keeps crashing
PrivateKeyMissing when running Enable-ExchangeCertificate
Enable-ExchangeCertificate : The certificate with thumbprint XXXXXXXXX was found but is not valid for use with Exchange Server
(reason: PrivateKeyMissing).
At line:1 char:27
+ Enable-ExchangeCertificate <<<< -Thumbprint XXXXXXXXX -Services “IIS”
The above error is a result of a glitch with Exchange 2007. This issue does not happen all the time as it is completely random, but when it does happen no certificate can be installed or removed through the Exchange Management Shell (EMS). For whatever reason it may be, the system forgets where it placed the Private Key or the certificate store is damaged.
Repair Damaged Certificate Store:
1) Open MMC (Microsoft Management Console) to the Certificate Manager (Certificates Snap-in) for the Local Computer account.
2) Double-Click on the recently imported certificate (It will be missing the golden key).
3) Go to the Details tab.
4) Click on the Serial Number field and copy down that number. (Leave window open)
5) Open up the command prompt (DOS Prompt — CMD.exe)
6) Type: certutil -repairstore my “SerialNumber”( SerialNumber is that what was copied down in step 4.)
7) After running the command, go back to the MMC and right-click Certificates and select “Refresh”.
One should now see the golden key associated with the certificate.
9) Double-check in the Exchange Power Shell with: Get-ExchangeCertificate
Alternatively if the above does not work try the following:
Note: Follow these steps if running Windows Server 2008 only
1) Open MMC (Microsoft Management Console) to the Certificate Manager for the Local Computer account. (Certificates Snap In)
2) Look in the Personal section of the Certificate Manager and there should be icon(s) without a little golden key. (Those with the key have the private key bonded to them.)
3) Delete the icons without the golden key.
4) Go back to the EMS.
5) Run the Import-ExchangeCertificate and Enable-ExchangeCertificate in one line like so: [ Import-ExchangeCertificate -Path c:\exchange.comodo.com.crt | Enable-ExchangeCertificate -Services “SMTP, IMAP, IIS, POP” ]
*** Please modify the command according to your needs. ***
One Response to “PrivateKeyMissing when running Enable-ExchangeCertificate”
Leave a Reply
You must be logged in to post a comment.
12. May 2010 at 18:12
[…] Tech Talk with Homerun Networks » Blog Archive » PrivateKeyMissing when running Enable-ExchangeCer… homerun-networks.com/2009/07/24/privatekeymissing-when-running-enable-exchangecertificate – view page – cached * 20. April 2010: Create bootable USB drive with Server 2008 * 3. March 2010: New IE vulnerability found - Win 2000 and XP * 15. February 2010: Windows 7 - memory leaks, hangs and freezes detailed * 14. February 2010: MS10-015 bulletin - possible BSOD with never ending boot cycles * 7. January 2010: Commvault Simpana 8 - update * 21. December 2009: Fighting malware, Trojans and a multitude of… Read more* 20. April 2010: Create bootable USB drive with Server 2008 * 3. March 2010: New IE vulnerability found - Win 2000 and XP * 15. February 2010: Windows 7 - memory leaks, hangs and freezes detailed * 14. February 2010: MS10-015 bulletin - possible BSOD with never ending boot cycles * 7. January 2010: Commvault Simpana 8 - update * 21. December 2009: Fighting malware, Trojans and a multitude of other web-related threats * 10. December 2009: Commvault Simpana 8 saving lives, disk space and relieving stress * 24. November 2009: Windows 7 - Explorer.exe keeps crashing * 6. October 2009: Microsoft Outlook NK2 file location * 30. July 2009: Make a mapped drive available offline View page Tweets about this link Topsy.Data.Twitter.User[’ihatemreinhold’] = {”photo”:”http://a3.twimg.com/profile_images/891565693/Hitman2_normal.jpg”,”url”:”http://twitter.com/ihatemreinhold”,”nick”:”ihatemreinhold”}; ihatemreinhold: “PrivateKeyMissing when running Enable-ExchangeCertificate http://tinyurl.com/278wy2s ” 1 day ago view tweet retweet Filter tweets […]