Using the same SSL-certificate in IIS as in ArcGIS for Server

3425
2
04-14-2015 06:08 AM
JosteinSvegården
New Contributor

I have enabled SSL on ArcGIS for Server 10.3: Created a self signed certificate in the ArcGIS Server REST Admin, exported it to a certificate request that was sent to a signing authority. Got the signed certificate back and imported it into the self signed certificate. All working well.

Then, I want to use the same certificate to make an https binding to my website. When I try to import the certificate into IIS, the result is a certificate that does not contain a private key, and I'm not able to use it for the https binding (it doesn't show up in the dropdown of available certificates in IIS). The support people from the company that issued the SSL certificate says that IIS don't know where to find this private key since the original self-signed certificate and the certificate request was made inside ArcGIS Server. Does anyone know how to do this?

I have found documentation about using SSL certificates on ArcGIS Server that are already in use by IIS, but nothing for the opposite case like this. Any tips would be very welcome!

0 Kudos
2 Replies
JeffSmith
Esri Contributor

Jostein,

Yes, this can be done but requires the use of the 'keytool' command or a 3rd-party utility like 'Keystore Explorer' to access and export both the public and private keys for the SSL certificate.  It is not a straight-forward process and you would need to get into the Server framework to find the correct files.  I would recommend contacting Esri Technical Support for assistance with this.

0 Kudos
DennisSmith
Esri Contributor

You may also go into your IIS and access Server Certificates and then Create a certificate Request and submit this to your signing authority then import this into IIS and bind it to your port(s) being used

0 Kudos