The certificate with thumbprint was found but is not valid
Posted: Sun May 02, 2010 7:08 pmWhen I try to install the Certificate in Exchange Server 2007
I get
Enable-ExchangeCertificate : The certificate with thumbprint
579D53A773B4A63603
was found but is not valid for use with Exchange
Server
(reason: PrivateKeyMissing).
At line:1 char:27
+ Enable-ExchangeCertificate <<<< -Thumbprint
420F1A81 -Services "SMTP, IIS"
The response from goDaddy was
Thank you for contacting Secure Certificate support. The error you have described and displayed below is a result of an issue with Exchange 2007. This issue does not happen every time, but appears to be random. When it does happen no certificate can be installed or removed through the Exchange Management Shell (EMS). For whatever reason it may be, the system may forget where it placed the Private Key or the certificate store may be damaged.
Enable-ExchangeCertificate : The certificate with thumbprint (example) was found but is not valid for
use with Exchange Server
(reason: PrivateKeyMissing).
At line:1 char:27
+ Enable-ExchangeCertificate <<<< -Thumbprint (example) -Services "SMTP, IIS"
To Repair the Certificate Store:
• Open MMC (Microsoft Management Console) to the Certificate Manager (Certificates Snap-in) for the Local Computer account.
• Double-Click on the recently imported certificate (It will be missing the golden key).
• Go to the Details tab.
• Click on the Serial Number field and copy down that number. (Leave window open)
• Open up Power Shell.
• Type: certutil -repairstore my "SerialNumber" (inserting the serial number of the certificate in question.)
• After running the command, go back to the MMC and right-click Certificates and select "Refresh".
• You should now see the golden key associated with the certificate.
• Double-check in the Exchange Power Shell with: Get-ExchangeCertificate.
Let us know if we can be of further service.
I get
Enable-ExchangeCertificate : The certificate with thumbprint
579D53A773B4A63603
was found but is not valid for use with Exchange
Server
(reason: PrivateKeyMissing).
At line:1 char:27
+ Enable-ExchangeCertificate <<<< -Thumbprint
420F1A81 -Services "SMTP, IIS"
The response from goDaddy was
Thank you for contacting Secure Certificate support. The error you have described and displayed below is a result of an issue with Exchange 2007. This issue does not happen every time, but appears to be random. When it does happen no certificate can be installed or removed through the Exchange Management Shell (EMS). For whatever reason it may be, the system may forget where it placed the Private Key or the certificate store may be damaged.
Enable-ExchangeCertificate : The certificate with thumbprint (example) was found but is not valid for
use with Exchange Server
(reason: PrivateKeyMissing).
At line:1 char:27
+ Enable-ExchangeCertificate <<<< -Thumbprint (example) -Services "SMTP, IIS"
To Repair the Certificate Store:
• Open MMC (Microsoft Management Console) to the Certificate Manager (Certificates Snap-in) for the Local Computer account.
• Double-Click on the recently imported certificate (It will be missing the golden key).
• Go to the Details tab.
• Click on the Serial Number field and copy down that number. (Leave window open)
• Open up Power Shell.
• Type: certutil -repairstore my "SerialNumber" (inserting the serial number of the certificate in question.)
• After running the command, go back to the MMC and right-click Certificates and select "Refresh".
• You should now see the golden key associated with the certificate.
• Double-check in the Exchange Power Shell with: Get-ExchangeCertificate.
Let us know if we can be of further service.