SSL Certificate Renewal on Windows Server 2022 Core

[ISAslot]

Our CA sends auto renewals. In the past I would just process these through the complete certificate request option in IIS Manager. Now that we have Windows Server 2022 core there is no IIS manager on the server. I can remote connect with IIS manager on a different server but there is no Server Certificates icon available.

If I try to process the auto renewal with 'certreq -accept -machine file.crt' it errors out. Presumably because there is not a corresponding request.

Is there a way to process these auto renewals or must I send a new request each time?

 

[Red Squirrel]

I had no idea IIS was still a thing. I always found it so clunky and primitive. If it's an option I would just switch to Apache running on Linux. It's just so much easier to manage pretty much every aspect of running a web server. You can setup something like certbot or acme.sh to automate the entire process of certificates.

 

[ISAslot]

That's certainly one option.

After checking this morning it looks like the certificates are now showing as being associated with their corresponding private key. I did run the certutil.exe -repairstore my [serial number] command for the certs I imported from the auto renewal. Not sure why there was a delay before they appeared to be associated.