ACES Header Image
   Creating an Operational Copy of Your Private Key - MSIE 5.5 and Higher

 
 

 

Print this page for reference.
 
Identity Certificate:
 

1. Click the "Start" button on your taskbar.
2. Select "Run" from the list.
3. Type in "mmc" and click the "OK" button.
 
Run Command Window Image
 

4. Select "Add/Remove Snap-in" under the main "Console" button for Win 2000 menu, or "File" button for Win XP menu.
5. Click the "Add" button.
 
Console Root Window Image
 
6. Select "Certificates" in the window and click "Add".
 
Add Stand-Alone Snap-in Image
 

7. Ensure that "My User Account" is selected and click "Finish".
8. Click "Close" to close the "Add Standalone Snap-in" window.
9. Click "OK" to close the "Add/Remove Snap-in" window.
 
Add User Account Image
 

10. Click the plus sign to expand the "Certificates - Current User" entry.
11. Click the plus sign to expand the "Certificate Enrollment Requests" entry.
12. Select the "Certificates" folder under the "Certificate Enrollment Requests" entry.

NOTE: There should be two files named "Identity_KeyPair" and "Encryption_KeyPair" if you have requested both certificates.
 
Select Appropriate Requests Image
 

13. Right-click the "Identity_KeyPair" entry and select "All Tasks" and then "Export...".

NOTE: It is at this point that if you have also requested an Encryption Certificate and you are following this same process for saving your Encryption Certificate private key, that you would need to right-click the "Encryption_KeyPair" entry and select "All Tasks" then Export...".
See the Encryption Certificate Instructions following the Identity Certificate Instructions.

 
All Tasks - Export Image
 
14. Click "Next" in the "Certificate Export Wizard" window.
 
Click Next Image
 
15. Ensure that "Yes, export the private key" is selected and click "Next".
 
Yes, export the key Image
 

16. Make sure that "Personal Information Exchange" and "Enable strong protection" are selected.
17. Click "Next" on the "Export File Format" screen.
 
Select P12 Format Image
 

18. Enter a Password to protect the file being created.

NOTE: ORC recommends that you use the same password here that you created when you requested the certificate.
 
Secure File Image
 
19. Click "Browse" and select where you want to save the operational copy of your private key(s); Make sure that you are the only person with access to your private key copy.
 
Browse Button image
 

20. An easy way to name your file is to use <lastname>-id_Keybackup.pfx, where <lastname> is your last name.
21. Click "Save".
22. Click "Next".
 
Enter Filename Image
 
23. Click "Finish" to complete the saving of your private key.
 
Finish button Image
 

24. A window will ask for the password that you created when you requested your certificate. Enter the password.
25. Click "OK".
 
Enter Password Image
 

Another window should appear stating, "The export was successful".

27. Click "OK" to close this window.
 
Success Page Image
 
 
Encryption Certificate:
 
If you purchased an Encryption Certificate , please follow the instructions you used above for saving the Identity Certificate private key, but instead right-click the "Encryption_KeyPair" entry and select "All Tasks" then "Export...".
 
Select Enc Cert
 

 


Return to Last Page