MultyTask Network Services

24May/101

Exporting certificate from IIS to ISA Server

When exporting a certificate from an existing IIS server to import into ISA server and publish in a rule, it’s crucial to export it from the MMC console “Certificates” rather then from within IIS management.  By doing so, the cert then has two “purposes” associated with it.  ISA server looks for a cert that’s purpose is “Client Authentication.”  When you export it from IIS, all you get is a cert with “Server Authentication” and when imported into ISA, it’s ignored and you get the infamous certificate error.

NOTES:
Make sure you have forms based authentication enabled on only one side of the configuration.  (OWA/IIS or ISA)  If both are enabled at the same time, you’ll login and be returned to another login page.

4Feb/100

Exporting certificate from IIS to ISA Server

When exporting a certificate from an existing IIS server to import into ISA server and publish in a rule, it’s crucial to export it from the MMC console “Certificates” rather then from within IIS management.  By doing so, the cert then has two “purposes” associated with it.  ISA server looks for a cert that’s purpose is “Client Authentication.”  When you export it from IIS, all you get is a cert with “Server Authentication” and when imported into ISA, it’s ignored and you get the infamous certificate error.  I’ll expand upon this more with a proper walkthrough when time permits.