I have a .cer file that was generated with a new expiry date from a previous CSR. When I import it into certmgr on a Windows Server 2016 box (logged on as the correct user etc), it doesn't have a primary key as the previous cert did.
I've tried using certutil -repairstore my [new cert serial number], and got the below error, no matter how I format the serial number:
CertUtil: -repairstore command FAILED: 0x80090011 (-2146893807 NTE_NOT_FOUND)
CertUtil: Object was not found.
I also tried certreq -accept -user [path to .cer file] and got the below error (same with machine option):
A certificate issued by the certification authority cannot be installed. Contact your administrator.
Cannot find object or property. 0x80092004 (-2146885628 CRYPT_E_NOT_FOUND)
I would have thought since I have the private key for the original cert, it should pick it up for the new one fairly easily? I'm happy to generate a new CSR if necessary, I'd just like to simplify the process and understand how to renew rather than replace.
