It ended up being that there were multiple certificates with the same name just expired. Once I delete all but the current one, it worked.
Thanks, Beth -----Original Message----- From: Andrew Mortensen [mailto:and...@weblogin.org] Sent: Thursday, July 05, 2012 9:58 AM To: Davis, Beth Cc: cosign-discuss@lists.sourceforge.net Subject: Re: [Cosign-discuss] SSL Private key error On Jul 5, 2012, at 9:18 AM, Davis, Beth wrote: > Has anyone run into this error with Windows Server 2008 Cosign 3.1.0 : > > A fatal error occurred when attempting to access the SSL credential private > key. The error code returned from the cryptographic module is 0x80090016. > > We are prompted to login and then get error "The service is unavailable." On > the client and the error above in Event Viewer on the server. > > Any help would be appreciated. Our current production Cosign enabled sites > are down. Hi Beth. Some quick googling (which I'm sure you've done as well) suggests your IIS user either lacks permission to read the certificate private key, or that your private key has gone missing. It sounds like the CosignModule is redirecting you to login, and then getting the error after you authenticate. Is that correct? Can you run DebugView to capture what the CosignModule is doing when you run into the problem? It looks to me like PSU has good documentation on how to get DebugView running: http://ait.its.psu.edu/services/identity-access-management/identity/webaccess/cosignmodule-3x-iis-7.html Please send the DebugView output to me off list. andrew ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Cosign-discuss mailing list Cosign-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/cosign-discuss
