Cisco Unified MeetingPlace, Release 7.0 -- How to Back Up and Restore the SSL Private Key

From DocWiki

Revision as of 22:41, 18 October 2011 by Cgriffen (Talk | contribs)
Jump to: navigation, search

Main page: Cisco Unified MeetingPlace, Release 7.0

Up one level: Configuration

This section describes how to export and subsequently reimport the SSL private key into the MPWEB database. We recommend that you make this part of your standard backup procedure. You will need to complete these procedures any time you need to move the SSL certificate, for example, from an old Web Server computer to a new Web Server computer or when you are rebuilding a computer.


Exporting the Private Key

This procedure describes how to export the private key/certificate pair on the Web Server so that you can manually copy the SSL files in case you need to restore SSL on the Web Server.


  1. Open the Internet Services Manager on the Cisco Unified MeetingPlace Web Server.
    Select Start > Programs > Administrative Tools > Internet Information Services Manager.
  2. Navigate to Default Web Site.
    Select the + sign beside Local Server > Web Sites to open the appropriate directory trees.
  3. Right-click Default Web Site.
  4. Select Properties.
    The Default Web Site Properties window displays.
  5. Select the Directory Security tab.
  6. Select Server Certificate.
    The Web Server Certificate wizard displays.
  7. Select Next.
  8. Select Export the current certificate to a pfx file.
  9. Select Next.
  10. Select Browse and select to save the certificate file to your desktop.
  11. Select Next.
  12. Enter a password to encrypt the certificate.
  13. Enter the password again to confirm it.
  14. Select Next.
    The Export Certificate Summary Screen displays and the exported certificate file is now on your desktop.
  15. Select Next.
  16. Select Finish to close the Web Server Certificate wizard.
  17. Select OK or Cancel to close the Default Web Site Properties window.
  18. Close IIS Manager.

What to Do Next

Proceed to Copying and Saving the Private Key for Future Use.

Copying and Saving the Private Key for Future Use

We recommend that you complete this procedure as part of your standard backup procedure on the Web Server.

Before You Begin

Complete Exporting the Private Key.

  1. Open a DOS prompt.
    1. Select Start > Run.
    2. Enter cmd.
  2. Enter the path to your desktop in the cmd.exe window.
    Example: C:\> cd "Documents and Settings\Administrator\Desktop"
  3. Enter the full path to OpenSSL.exe keeping the following in mind:
    • After -in, enter the full path to where you placed the file when you exported the private key.
    • After -out, enter the full path to where you want to send the exported file.
      Example:C:\Documents and Settings\Administrator\Desktop>"\Program Files\Cisco Systems\MPWeb\DataSvc\openssl.exe" pkcs12 -in "\Documents and Settings\Administrator\Desktop\mycertificate.pfx" -out "\Documents and Settings\Administrator\Desktop\mycertificate.pem" -nodes
    This converts the PFX format to a PEM format. The mycertificate.pem file will have all the certificates starting with the Private key.
  4. Enter the import password when prompted.
    This is the password you defined in the Web Server Certificate wizard during the export process.
  5. Save the PEM file. You will need it whenever you need to reapply the certificate.

Importing the Private Key in to the MPWEB Database

Before You Begin

Complete Copying and Saving the Private Key for Future Use.

  1. Open SQL Server Enterprise Manager.
    Click Start > All Programs > Microsoft SQL Server > Enterprise Manager.
  2. Navigate to the MPWEB database.
    Click the + sign next to SQL Server Group > LOCAL > Databases > MPWEB to open the appropriate directory trees.
  3. Click Tables in the MPWEB directory.
    A list of tables opens in the right pane.
  4. Right-click Web in the right pane.
  5. Select Open table > Return all rows.
    The Web database table displays.
  6. Scroll to the right until you see the SSLPrivateKey column.
  7. Open the PEM file in Notepad.
    You saved the PEM file when you copied and saved the private key for future use.
  8. Copy the private key in its entirety.
    The private key begins with "Begin RSA Private key" and ends with "end RSA private key".
  9. Paste the private key into the SSLPrivateKey field.
    1. Click the field before the SSLPrivateKey column.
    2. Press the Tab key on your keyboard to select all of the data in the SSLPrivateKey field.
    3. Right-click and select Paste to paste the value you copied from Notepad.
  10. Click somewhere else on the screen to remove your cursor from the SSLPrivateKey field.
  11. Close SQL Server Enterprise Manager.
  12. (Optional) Enable SSL if it is not already enabled.
  13. Reboot the server.

Related Topics

Rating: 5.0/5 (1 vote cast)

Personal tools