How to Export and Import a Private Key Using MMC and IIS Manager?

How to Export and Import a Private Key?

Exporting a Private Key from Windows Server

To export a private key, you must create a .pfx file using the following steps:

1. Create an MMC Snap-in

  • Right-click the Start button and select Run.
  • Type mmc and press OK.
  • In the MMC window, go to File > Add/Remove Snap-in.
  • Choose Certificates, then click Add.
  • Select Computer account, click Next, and choose Local Computer.
  • Click Finish and return to the main console.

2. Export the Certificate

  • Navigate to Certificates > Personal > Certificates in the MMC console.
  • Right-click the target certificate and choose All Tasks > Export.
  • Follow the wizard and select Yes, export the private key. (If unavailable, ensure the private key was marked exportable during creation.)
  • Choose Personal Information Exchange – PKCS #12 (.pfx) and enable Include all certificates in the certification path.
  • Set a secure password for the .pfx file and save it to a desired location.
  • Complete the wizard and confirm export success.

Importing the .pfx File to Another Server

Using MMC

  • Open MMC and navigate to Certificates > Personal.
  • Right-click the folder and choose All Tasks > Import.
  • Select the .pfx file, enter the password, and enable Mark this key as exportable.
  • Choose Automatically select the certificate store and complete the wizard.

Using IIS Manager

  • Open IIS Manager from Administrative Tools.
  • Select the target server in the left menu and choose Server Certificates under Security.
  • From the Actions menu, click Import.
  • Select the .pfx file, enter its password, and allow export if needed.
  • Confirm the import process.

    • Related Articles

    • How to Export Chained Certificate from Browser?

      Exporting a Chained Certificate from Browsers Learn how to obtain a chained SSL certificate using Mozilla Firefox or Google Chrome. Follow these steps for each browser: Mozilla Firefox Open your website in Firefox. Click the lock icon beside the URL ...

    • How to Create PEM File?

      PEM File Format Overview PEM, which stands for Privacy Enhanced Mail, is a widely used file format for storing and transferring encrypted data, particularly certificates and cryptographic keys. A file with a .PEM extension serves as a container for ...

    • DMARC Record and Configuration in VergeCloud User Panel

      DMARC, which stands for Domain-based Message Authentication, Reporting, and Conformance, is a crucial email authentication protocol provided by VergeCloud. It leverages two existing mechanisms, SPF (Sender Policy Framework) and DKIM (DomainKeys ...

    • Understanding the Set-Cookie Header

      Understanding the Set-Cookie Header and Caching Behavior The Set-Cookie HTTP response header is used by servers to store cookies on the user's browser. These cookies enable stateful sessions, user personalization, and authentication workflows. ...

    • What is the Cache-Control Header?

      Understanding the Cache-Control Header in VergeCloud The Cache-Control header is an essential HTTP header used to manage caching behavior for content served on the web. By defining caching directives, the Cache-Control header helps optimize content ...