What Was I Thinking?

Follies & Foils of .NET Development
posts - 95 , comments - 352 , trackbacks - 0

How to set x509 Certificate private key access rights for AppPoolIdentity

If your website uses the AppPoolIdentity and requires access to the private key of an x509Certficate, you’ll need to grant the read permissions to the iis application pool.

 

To grant permissions to the AppPoolIdentity:

  1. Run Certificates.MMC (or Start->run->mmc.exe, Add Certificate Snap-In for LocalMachine)
  2. Select the certificate (Personal node on the certificate tree) , right click and Manage Permissions.
  3. Add a new user to the permissions list.
  4. Enter "IIS AppPool\AppPoolName" on the local machine". Replace "AppPoolName" with the name of your application pool.

Print | posted on Tuesday, March 15, 2011 12:09 PM |

Feedback

Gravatar

# re: How to set x509 Certificate private key access rights for AppPoolIdentity

Hi All,

I am working in Asp.net application my application is working in AppPoolIdentity AppPool i need to provide the manage private key value of

certificate to AppPoolIdentity (where my Asp.net application working)

I have follow below steps:-

(i.e start -> run ->MMC ->consol root->Explore certificate->select personal Certificate-> right click on IIS certificate

->All Tasks->manage private key ->Security window open-> press Add button-> select User and Group window open)


but i am not getting AppPoolIdentity in list of objects name console window.


Please help me how can i add AppPoolIdentity in Objects name window.

can i use Network service any risk if i use network service?

my working enviornment is Asp.net 3.5,IIS 7.5, Server 2008 R2 my application is runing in AppPoolIdentity.

Thanks in Advance
7/29/2011 1:26 PM | shrikant
Gravatar

# re: How to set x509 Certificate private key access rights for AppPoolIdentity

you can follow the link:

http://stackoverflow.com/a/39223239/3857542
8/30/2016 5:12 AM | ILYAS
Post A Comment
Title:
Name:
Email:
Comment:
Verification:
 

Powered by: