How do I create a new certificate for Windows Admin Center??

%3CLINGO-SUB%20id%3D%22lingo-sub-1271973%22%20slang%3D%22en-US%22%3EHow%20do%20I%20create%20a%20new%20certificate%20for%20Windows%20Admin%20Center%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1271973%22%20slang%3D%22en-US%22%3E%3CP%3EI%20just%20now%20observed%20that%20our%20internal%20WAC%20certificate%20was%20only%20two%20months%20old%20and%20it's%20already%20expired.%20Can%20I%20simply%20create%20and%20use%20our%20own%20self-signed%20certificate%20and%20use%20it%3F%3F%20Do%20I%20install%20it%20like%20normal%20certificates%20within%20the%20Certificates%20MMC%20and%20WAC%20will%20automagically%20use%20it%3F%3F%3C%2FP%3E%3CP%3EThank%20you%2C%20Tom%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1285148%22%20slang%3D%22en-US%22%3ERe%3A%20How%20do%20I%20create%20a%20new%20certificate%20for%20Windows%20Admin%20Center%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1285148%22%20slang%3D%22en-US%22%3E%3CP%3ETo%20update%20the%20certificate%20used%20by%20Windows%20Admin%20Center%2C%26nbsp%3B%3CSPAN%3Ere-run%20the%20installer%20and%20choose%3C%2FSPAN%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3Echange%2C%20then%20specify%20the%20thumbnail%20of%20another%20installed%20certificate.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows-server%2Fmanage%2Fwindows-admin-center%2Fdeploy%2Finstall%23updating-the-certificate-used-by-windows-admin-center%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3EUpdating%20the%20certificate%20used%20by%20Windows%20Admin%20Center%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1289428%22%20slang%3D%22en-US%22%3ERe%3A%20How%20do%20I%20create%20a%20new%20certificate%20for%20Windows%20Admin%20Center%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1289428%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F57259%22%20target%3D%22_blank%22%3E%40Jeff%20Woolslayer%3C%2FA%3E%26nbsp%3BHi%2C%20I%20have%20reran%20the%20installation%20and%20selected%20the%20new%20cert%20provide%20by%20my%20CA%20but%20now%20I%20have%20an%20issue%20with%20the%20WAC%20Encryption%20certificate%20because%20the%20other%20certificate%20in%20the%20chain%20is%20not%20valid%20anymore.%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20WAC%20certificate%20that%20was%20self-signed%20and%20put%20into%20Intermediate%20Certification%20Authorities%20store%20is%20expired%20(was%20only%20valid%20for%203%20month).%3C%2FP%3E%3CP%3EHow%20can%20I%20update%20that%20chain%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1289482%22%20slang%3D%22en-US%22%3ERe%3A%20How%20do%20I%20create%20a%20new%20certificate%20for%20Windows%20Admin%20Center%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1289482%22%20slang%3D%22en-US%22%3E%3CP%3EThe%20e%3CSPAN%3Encryption%20certificate%26nbsp%3Bis%20generated%20using%20the%20certificate%20you%20specify%20in%20the%20installer.%20If%20you%20can%20reproduce%20this%20100%25%20please%20share%20the%20exact%20steps.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1289718%22%20slang%3D%22en-US%22%3ERe%3A%20How%20do%20I%20create%20a%20new%20certificate%20for%20Windows%20Admin%20Center%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1289718%22%20slang%3D%22en-US%22%3EI%20will%20try%20this%20--%20make%20a%20new%20local%20self-signed%20cert%20then%20change%20it%20to%20that%20etc.%20with%20the%20new%20thumbprint%2C%20thank%20you%20for%20telling%20me%20about%20this!!%20%3A)%3C%2Fimg%3E%3C%2FLINGO-BODY%3E
Highlighted
Occasional Contributor

I just now observed that our internal WAC certificate was only two months old and it's already expired. Can I simply create and use our own self-signed certificate and use it?? Do I install it like normal certificates within the Certificates MMC and WAC will automagically use it??

Thank you, Tom

4 Replies
Highlighted

To update the certificate used by Windows Admin Center, re-run the installer and choose 

change, then specify the thumbnail of another installed certificate.

 

Updating the certificate used by Windows Admin Center

Highlighted

@Jeff Woolslayer Hi, I have reran the installation and selected the new cert provide by my CA but now I have an issue with the WAC Encryption certificate because the other certificate in the chain is not valid anymore. 

The WAC certificate that was self-signed and put into Intermediate Certification Authorities store is expired (was only valid for 3 month).

How can I update that chain?

Highlighted

The encryption certificate is generated using the certificate you specify in the installer. If you can reproduce this 100% please share the exact steps.

Highlighted
I will try this -- make a new local self-signed cert then change it to that etc. with the new thumbprint, thank you for telling me about this!! :)