I'm at my wits end. I looked back through the archives and tried all the
stuff Rob Crockett was told to do with his godaddy/starfield cert.
Here are the steps I've done:
- Wildcard cert lives on an IIS server
- Exported cert with private key as pfx
- Used openSSL to strip the password giving me the private and public in the
same pem file.
- Upload that private file to CCA, that gives a Success message
- Upload the root CA cert to the "* Trust non-standard . . ." which gives:
Success. Changes will take effect after you restart the server.
- Upload the intermediate CA cert to the "* Trust non-standard . . ." which
gives: Success. Changes will take effect after you restart the server.
So I do the reboots and try to Verify and Install and I get: Error: The
Uploaded CA-signed Certificate doesn't match the Uploaded Private Key.
Using a similar method on my proxy server (EZProxy) the cert works just fine
so it is something with the CCA quirks that I'm butting my head against.