Your network contains two Web servers named Server1 and Server2. Server1 has a Web site named
Site1. Site 1 is configured to use SSL. You need to import the SSL certificate from Server1 to Server2.
The solution must ensure that the private key is also imported. Which format should you use to
export the certificate?
A.
Base-64 encoded X.509 (.cer)
B.
Cryptographic Message Syntax Standard PKCS #7 (.p7b)
C.
DER encoded binary X.509 (.cer)
D.
Personal Information Exchange PKCS #12 (.pfx)
Explanation:
To export a certificate with the private key
1. Open the Certificates snap-in for a user, computer, or service.
2. In the console tree under the logical store that contains the certificate to export, click Certificates.
3. In the details pane, click the certificate that you want to export.
4. On the Action menu, point to All Tasks, and then click Export.
5. In the Certificate Export Wizard, click Yes, export the private key. (This option will appear only if
the private key is marked as exportable and you have access to the private key.)
6. Under Export File Format, do any of the following, and then click Next.
– To include all certificates in the certification path, select the Include all certificates in the
certification path if possible check box.
– To delete the private key if the export is successful, select the Delete the private key if the export is
successful check box.
– To export the certificate’s extended properties, select the Export all extended properties check box.
7. In Password, type a password to encrypt the private key you are exporting. In Confirm password,
type the same password again, and then click Next.
8. In File name, type a file name and path for the PKCS #12 file that will store the exported certificate
and private key. Click Next, and then click Finish.
Source: http://technet.microsoft.com/en-us/library/cc754329.aspx