Forum Discussion
Solved
AdminService REST API keeps resetting PKI cert
Greetings all, I have a ConfgMgr (2403) Provider that I am trying to bind an internal PKI certificate to for the AdminService. This provider is a dedicated machine and does not have IIS installed, s...
My "solution" for the moment is to export the SMS Issuing cert from the CM Console and install it into the "Trusted Root" store on the machines I need to connect to the API from.
I can't find any way to persist the PKI cert, so I may need to raise a case with Microsoft to resolve.
Hi Scott,
All seems fine regarding the implementation. Due to the fact that the provider is insisting on using the self signed certificate, it look likes the binding with the self signed certificate is still there and the provider is not considering the changes you're doing. I recommend that you do as follow:
- manually unbind the self signed certificate to port 443 : netsh http delete sslcert ipport=0.0.0.0:443
- Redo the binding with your internal cert
Let me know when done
Maher