new ssl certificates from comodo and rapidssl dont work
Posted: Wed Jul 31, 2019 11:17 am
I have no idea what is going on, but, I can't get intermediate certificates to show up in the certificate chain any more (this is a new problem, and I can't figure out what to do).
Does anyone have a step by step method for getting certificates to work with AMS?
It used to be, you create a CSR and the Certificate Authority (CA) would send you a ROOT, INTERMEDIATE and a SERVER certificate (mail.mydomain.com).
You install these certificates into their respective places, then export your SERVER certificate as a PFX (to get your private key), convert to text (using some utility) format - .PEM, then split that into your private key and your cert so you can import into AMS. Always a lengthy process, but this no longer works with Comodo nor RapidSSL (tried both and spent hours on every conceivable combination of getting AMS certs to work - you can view the cert, the intermediate and root chain - it's friggin' perfect! YET my browser says it's missing the intermediate certificate!!!).
I can't figure what could possibly be going on other than, perhaps, something changed in Windows Server (using 2012R2) that is screwing things up.
Anyone? (18 hours of hair pulling - I've done this dozens of times in the past and have 25 years IT experience and can't for the life of me, nor Comodo nor RapidSSL figure this out)
Does anyone have a step by step method for getting certificates to work with AMS?
It used to be, you create a CSR and the Certificate Authority (CA) would send you a ROOT, INTERMEDIATE and a SERVER certificate (mail.mydomain.com).
You install these certificates into their respective places, then export your SERVER certificate as a PFX (to get your private key), convert to text (using some utility) format - .PEM, then split that into your private key and your cert so you can import into AMS. Always a lengthy process, but this no longer works with Comodo nor RapidSSL (tried both and spent hours on every conceivable combination of getting AMS certs to work - you can view the cert, the intermediate and root chain - it's friggin' perfect! YET my browser says it's missing the intermediate certificate!!!).
I can't figure what could possibly be going on other than, perhaps, something changed in Windows Server (using 2012R2) that is screwing things up.
Anyone? (18 hours of hair pulling - I've done this dozens of times in the past and have 25 years IT experience and can't for the life of me, nor Comodo nor RapidSSL figure this out)