The SSL certificate for my web site just expired a few days ago, and I would like to renew it.
I originally issued it two years ago using my Windows 2008 Certificate Authority, and it's worked without a hitch in all that time, so I would like to renew the certificate as simply as possible to make sure that all the applications relying on that certificate continue to work.
I can open an MMC instance and add the Certificates snap-in for the Local Computer. I can find the relevant certificate under Personal, but I can't renew it.
When I select Renew certificate with new key I get the following message:
Web Server Status: Unavailable
The permissions on the certificate template do not allow the current user to enroll for this type of certificate.
You do not have permission to request this type of certificate.
However, I can't understand this, as I'm logged on as a Domain Admin and I'm running the MMC instance in elevated mode.
I've checked the Web Server certificate template, and Domain Admins have the Enroll permission on this template.
FWIW, I also tried rebooting the server.
How can I renew the certificate?