How to give ASP.NET access to a private key in a certificate in the certificate store?

by
  1. Create / Purchase certificate. Make sure it has a private key.
  2. Import the certificate into the “Local Computer” account. Best to use Certificates MMC. Make sure to check “Allow private key to be exported”

  3. Based upon which, IIS 7.5 Application Pool’s identity use one of the following.

    • IIS 7.5 Website is running under ApplicationPoolIdentity. Open MMC => Add Certificates (Local computer) snap-in => Certificates (Local Computer) => Personal => Certificates => Right click the certificate of interest => All tasks => Manage private key => Add IIS AppPool\AppPoolName and grant it Full control. Replace “AppPoolName” with the name of your application pool (sometimes IIS_IUSRS)
    • IIS 7.5 Website is running under NETWORK SERVICE. Using Certificates MMC, added “NETWORK SERVICE” to Full Trust on certificate in “Local Computer\Personal”.
    • IIS 7.5 Website is running under “MyIISUser” local computer user account. Using Certificates MMC, added “MyIISUser” (a new local computer user account) to Full Trust on certificate in “Local Computer\Personal”.

Update based upon @Phil Hale comment:

Beware, if you’re on a domain, your domain will be selected by default in the ‘from location box’. Make sure to change that to “Local Computer”. Change the location to “Local Computer” to view the app pool identities.

More Related Contents:

  1. IIS AppPoolIdentity and file system write access permissions
  2. Fixing slow initial load for IIS
  3. How to increase request timeout in IIS?
  4. How to set correct file permissions for ASP.NET on IIS
  5. How do I protect static files with ASP.NET form authentication on IIS 7.5?
  6. How do I give ASP.NET permission to write to a folder in Windows 7?
  7. Web Application Problems (web.config errors) HTTP 500.19 with IIS7.5 and ASP.NET v2
  8. Windows Authentication for ASP.NET MVC 4 – how it works, how to test it
  9. ASP.NET MVC on IIS 7.5 – Error 403.14 Forbidden
  10. IIS application using application pool identity loses primary token?
  11. Script not served by static file handler on IIS7.5
  12. The configuration section ‘system.web.extensions’ cannot be read because it is missing a section declaration
  13. Requests hanging on Session module on IIS 7.5
  14. IIS AAR – URL Rewrite for reverse proxy – how to send HTTP_HOST
  15. I just discovered why all ASP.Net websites are slow, and I am trying to work out what to do about it
  16. Content-Disposition:What are the differences between “inline” and “attachment”?
  17. Generating an Excel file in ASP.NET [closed]
  18. Best way to trim strings after data entry. Should I create a custom model binder?
  20. How can I manually create a authentication cookie instead of the default method?
  21. Is there a way to automatically include content files into asp.net project file?
  22. Can I incorporate both SignalR and a RESTful API?
  23. Why does the 2nd T-SQL query run much faster than the first when called by Reporting Services 2005 in a web-app
  24. What are the pros and cons of running IIS as 32bit vs 64bit on a 64bit OS?
  25. Allow anonymous authentication for a single folder in web.config?
  26. Page_ClientValidate is validating multiple times.
  27. Streaming large file uploads to ASP.NET MVC
  28. set cookie to expire at end of session? asp.net
  29. how to know if the request is ajax in asp.net mvc?
  30. Change Single URL query string value

Leave a Comment