Exporting the SSL certificate with the private Key on windows

ssl azure ssl-certificate
10,221

Solution 1

This turned out to be something completely idiotic, as usual messed up by Microsoft. The process of creating a cert for a domain is that you need to use [Create Certificate Request] in IIS. Then send the created hash to the Authority and use the [Complete Certificate Request] in IIS where you provide the cert given to you by the Authority. This will install the cert into your local IIS

After the cert is installed you need to right click on it and do an export to a *.PFX file. The PFX file now can be uploaded to Azure or any other hosting...

The processes could have been very simple, if Microsoft didn't make sure to screw it up.

The thing is that when you click on [Complete Certificate Request], the file open dialog has a file type of *.CER, but this is wrong because you need to provide *.CRT!!! The solution is to change the file type select to All Files *.* and chose the *.CRT file provided by the Authority.

Solution 2

You will not have the option of exporting from IIS or exporting to PFX from Certificate Manager if you do not do the IIS "Create Certificate Request" and "Complete Certificate Request" from the same machine.

That was my problem. I did these two steps from two different machines.

I had to create a new request (in IIS), go to GoDaddy, rekey my certificate, download the new certificate, and then complete the request (in IIS).

Share:
10,221
user1615362
Author by

user1615362

Updated on June 09, 2022

Comments

  • user1615362
    user1615362 almost 2 years

    I am in a process of generating an SSL cert for a domain name.

    What I have done: Went to the IIS management > Server Certificates and clicked on Create Request. This generated a *.com file with a hash inside it that I submitted to the GoDaddy. From GoDaddy I got back a zip with two files: *.crt and *.p7b

    I exported the certificate to a *.cer file and uploaded it to Azure, but when I try to deploy the cloud project I get an error:

    Certificate with thumbprint associated with HTTPS input endpoint does not contain private key

    After reading similar issues on the Internet, I understand that my *.cer file doesnt contain the private key. My problem is that no matter how I try to export it to a *.PFX, the PFX option is always disabled in the cert export wizard.

    Also not sure if it is related, but when I Click on Complete Certificate Request in IIS and select the cert that I got from GoDaddy. I get an error:

    Cannot find the certificate request that is associated with this certificate file. A certificate request must be completed on the computer where the request was created.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

SSL certificate and Azure classic load balancer
SNI and wildcard SSL certificates on the same server with IIS
Firebase Hosted flutter app shows not a secure connection error when launching an external URL
How to Bypass SSL Certificate Verification in flutter?
Creating Self-Signed CA Certificate with makecert.exe
Error while creating self-signed SSL certificate
Connecting to MySQL server with ssl
Comodo SSL: ERR_CERT_AUTHORITY_INVALID on Chrome mobile and Opera mobile (Android)
Loading HTTPS in UIWebView
Some clients accept SSL cert; others reject it