Knowledgebase

Backing up the private key of the pending request

• • Go to menu Start, select Run, type mmc and select OK.
  • Console1 window will open. Click File and select Add/Remove Snap-in.
  • Select Add... button.
  • Select Certificates option and click Add...
  • Select Computer Account (NOTE: This step is very important. It must be the computer account and no other account) and click Next
  • Select Local Computer (the computer this console is running on) and click Finish.
  • Close the Add Standalone Snap-in box, click OK in the Add/Remove Snap in and return to the MMC
  • Look for a folder Request or Certificate Enrolment Requests. You can see the Certificates folder under it. You can see the corresponding key for the certificate request key that you made earlier.
  • Select the key that you want to back up.
  • Right-click the key, click All Tasks and Export.
  • Certificate Export Wizard starts, click Next on the Welcome page.
  • Select Yes, export the private key and then click Next
  • On the Export File Format page, accept the default settings, and then click Next. Note that Enable strong protection (requires IE 5.0, NT 4.0 SP4 or above) is selected.
  • Type and confirm a password for the private key, and then click Next.
  • Save the key .pfx file on a set location and click Next.
  • Click Finish. You receive a message that states that the export was successful.

Note : If you do not have the backup of the private key of the pending request, you must make a new certificate request, because there is no way to install the certificate for the corresponding request once it is removed or lost.

Import the backup copy of the private key

Note: This is info for people who have a backup copy of the private key of the pending request.

• • Go to Start menu, select Run, type mmc and click OK.
  • Console1 window will open.
  • Click File and select Add/Remove Snap in
  • Select Add... button.
  • Select Certificates from the Add Standalone Snap-in box and click Add
  • Select Computer Account (NOTE: This step is very important. It must be the computer account and no other account) and click Next
  • Select Local computer: (the computer this console is running on) and select Finish
  • Close the Add Standalone Snap-in box, click OK in the Add/Remove Snap in and add return to the MMC.
  • Look for a folder named Request or Certificate Enrolment Requests. You can see the Certificates folder under it.
  • Right-click it, select All Tasks and click Import.
  • When the Certificate Import Wizard starts, click Next.
  • Locate and select the private key (.pfx) file and go Next.
  • Type the password for the private key (this is the password that you specified when you backed up the private key for the pending request), and then select Mark the Private key as exportable. Click Next.
  • Select Place all certificates in the following store and go Next.
  • Click Finish. You receive a message that tells you that the import was successful.
  • The private key of your pending request is now restored.